Alternatives and similar repositories for sauron

Users that are interested in sauron are comparing it to the libraries listed below

• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆167Updated last year
• evilsocket / medusa
  A fast and secure multi protocol honeypot.
  ☆324Updated 3 years ago
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆107Updated 8 months ago
• phretor / infosec-opml
  My very personal and opinionatedly organized infosec/cybersec sources in one OPML file
  ☆58Updated 2 years ago
• malwaredb / malwaredb-rs
  MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery
  ☆52Updated this week
• kpcyrd / sh4d0wup
  Signing-key abuse and update exploitation framework
  ☆131Updated 6 months ago
• exein-io / kepler
  NIST-based CVE lookup store and API powered by Rust.
  ☆136Updated 2 months ago
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆132Updated last week
• pandora-analysis / pandora
  Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
  ☆275Updated 2 weeks ago
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆39Updated 2 years ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated last year
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• archcloudlabs / BSidesRoc2022_Linux_Malware_Analysis_Course
  BSidesRoc 2022 Linux Malware/Forensics Course
  ☆76Updated 3 years ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆164Updated 3 years ago
• malvuln / Adversary3
  Malware vulnerability intel tool for third-party attackers
  ☆122Updated last year
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆127Updated 2 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆60Updated last year
• Sh3lldor / PVT
  PCAP visualization tool
  ☆104Updated 2 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆133Updated 3 years ago
• mnrkbys / ma2tl
  macOS forensic timeline generator using the analysis result DBs of mac_apt
  ☆95Updated 2 years ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆112Updated 2 weeks ago
• viper-framework / viper2
  File analysis and management framework.
  ☆90Updated 2 years ago
• ozpingux / BasicLinuxForensicScript
  Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.
  ☆43Updated 2 years ago
• hazcod / ransomwhere
  A PoC ransomware sample to test out your ransomware response strategy.
  ☆213Updated 3 weeks ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• intelowlproject / GreedyBear
  Threat Intel Platform for T-POTs
  ☆157Updated last week
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆89Updated 3 months ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆130Updated 2 years ago
• silascutler / awesome-docker-malware-analysis
  Repository of tools and resources for analyzing Docker containers
  ☆71Updated 2 years ago