Alternatives and similar repositories for ergo-pe-av

Users that are interested in ergo-pe-av are comparing it to the libraries listed below

• secrary / DrSemu
  DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
  ☆278Updated 6 years ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆217Updated 2 years ago
• arieljt / VTCodeSimilarity-YaraGen
  ☆97Updated 5 years ago
• intezer / MoP
  MoP - "Master of Puppets" - Advanced malware tracking framework
  ☆84Updated last year
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆220Updated 4 years ago
• netspooky / inhale
  A malware analysis and classification tool.
  ☆190Updated 4 years ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆195Updated 3 years ago
• AlienVault-OTX / yabin
  A Yara rule generator for finding related samples and hunting
  ☆162Updated 3 years ago
• Cisco-Talos / BASS
  BASS - BASS Automated Signature Synthesizer
  ☆179Updated 7 years ago
• denisugarte / PowerDrive
  A tool for de-obfuscating PowerShell scripts
  ☆71Updated 6 years ago
• Xen0ph0n / YaraGenerator
  Automatic Yara Rule Generation
  ☆333Updated 10 years ago
• 0x0be / PEpper
  An open source script to perform malware static analysis on Portable Executable
  ☆329Updated 2 years ago
• plyara / plyara
  Parse YARA rules and operate over them more easily.
  ☆195Updated last year
• ITAYC0HEN / APT-Ecosystem
  This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map t…
  ☆111Updated 6 years ago
• Neo23x0 / Fnord
  Pattern Extractor for Obfuscated Code
  ☆301Updated 4 years ago
• d00rt / emotet_research
  ☆136Updated 7 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆94Updated 5 years ago
• mandiant / flare-qdb
  Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
  ☆164Updated 2 years ago
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆208Updated 12 years ago
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆218Updated 5 years ago
• InQuest / sandboxapi
  Minimal, consistent Python API for building integrations with malware sandboxes.
  ☆142Updated 2 years ago
• malwaremusings / unpacker
  Automated malware unpacker
  ☆120Updated 9 years ago
• jacobsoo / ThreatHunting
  This is just my personal compilation of APT malware from whitepaper releases, documents and malware samples from my personal research.
  ☆31Updated 6 years ago
• Northern-Lights / yara-parser
  Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
  ☆85Updated 3 years ago
• JPCERTCC / impfuzzy
  Fuzzy Hash calculated from import API of PE files
  ☆91Updated 3 years ago
• blacktop / docker-cuckoo
  Cuckoo Sandbox Dockerfile
  ☆332Updated 5 years ago
• intel / Resilient-ML-Research-Platform
  ☆79Updated 3 years ago
• sophos / yaraml_rules
  Security ML models encoded as Yara rules
  ☆215Updated 2 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆266Updated 7 years ago
• v-p-b / avpwn
  List of real-world threats against endpoint protection software
  ☆216Updated last week