Alternatives and similar repositories for dfxml_python

Users that are interested in dfxml_python are comparing it to the libraries listed below

• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 3 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆20Updated 5 years ago
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated 2 years ago
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆41Updated last year
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆48Updated 3 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• csirt-tooling-org / tooling-directory
  Tools used by CSIRT and especially in the scope of CNW
  ☆17Updated 6 months ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• tropChaud / webpage2attack
  Generate portable TTP intelligence from a web-based report
  ☆31Updated 3 years ago
• malvuln / viruscreds
  Database of backdoor passwords used by Malware, uncovered by the Malvuln project.
  ☆25Updated last year
• cmdaltr / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆32Updated last month
• zerber0s / mac_int
  macOS Artifact Intelligence Tool
  ☆13Updated 6 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated last year
• jasonsford / intel_collector
  Python library to query various sources of threat intelligence for data on domains, file hashes, and IP addresses.
  ☆31Updated 2 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆40Updated 5 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• MISP / misp-training-lea
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆35Updated 2 years ago
• evild3ad / isodump
  isodump - ISO dump utility
  ☆41Updated 6 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆50Updated this week
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆27Updated 3 years ago
• ail-project / ail-training
  AIL project training materials
  ☆38Updated 5 months ago
• BushidoUK / Malware-Zoo
  Hashes of infamous malware
  ☆26Updated 2 years ago
• ruppde / yara_rules
  Yara rules
  ☆22Updated 2 years ago
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆49Updated 2 years ago
• cudeso / misp-reporting
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Updated 5 months ago
• malpedia / malpediaclient
  ☆27Updated 5 months ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆55Updated last year
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆14Updated 2 years ago
• curated-intel / attack-lookup
  A MITRE ATT&CK Lookup Tool
  ☆46Updated last year