Alternatives and similar repositories for sauron

Users that are interested in sauron are comparing it to the libraries listed below

• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆167Updated last year
• evilsocket / medusa
  A fast and secure multi protocol honeypot.
  ☆326Updated 3 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• malvuln / Adversary3
  Malware vulnerability intel tool for third-party attackers
  ☆122Updated last year
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆136Updated last week
• exein-io / kepler
  NIST-based CVE lookup store and API powered by Rust.
  ☆136Updated 4 months ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆108Updated 10 months ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆164Updated 3 years ago
• kpcyrd / sh4d0wup
  Signing-key abuse and update exploitation framework
  ☆132Updated 8 months ago
• Ud0g-Py / Killing-The-Bear
  Repository and archive for Killing The Bear Gitbook
  ☆83Updated 2 years ago
• hazcod / ransomwhere
  A PoC ransomware sample to test out your ransomware response strategy.
  ☆211Updated 2 months ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆134Updated 4 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆39Updated 3 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆140Updated 11 months ago
• archcloudlabs / BSidesRoc2022_Linux_Malware_Analysis_Course
  BSidesRoc 2022 Linux Malware/Forensics Course
  ☆75Updated 3 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated 2 years ago
• phretor / infosec-opml
  My very personal and opinionatedly organized infosec/cybersec sources in one OPML file
  ☆59Updated 3 years ago
• pandora-analysis / pandora
  Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
  ☆277Updated last week
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆116Updated 4 years ago
• visma-prodsec / columbo
  Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.
  ☆61Updated 4 years ago
• malwaredb / malwaredb-rs
  MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery
  ☆56Updated this week
• MalGamy / YARA_Rules
  ☆66Updated 3 years ago
• Orange-OpenSource / decret
  DEbian Cve REproducer Tool
  ☆27Updated 3 weeks ago
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆150Updated 2 years ago
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆125Updated 3 months ago
• WithSecureLabs / detectree
  Data visualization for blue teams
  ☆126Updated 3 years ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 4 years ago
• d4rk-d4nph3 / Ransomware-Reports
  This repo is a collection of Ransomware reports from vendors, researchers, etc.
  ☆121Updated 3 years ago