Alternatives and similar repositories for protohacking

Users that are interested in protohacking are comparing it to the libraries listed below

• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆39Updated this week
• aboutsecurity / jupyter-notebooks
  My Jupyter Notebooks
  ☆36Updated 2 months ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 2 years ago
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated 4 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated last year
• mitre / training
  A CALDERA plugin
  ☆26Updated 10 months ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 4 years ago
• ps-interactive / labs_modern_malware_c2
  labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.
  ☆19Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆52Updated 5 months ago
• cudeso / dfir-iris-misp-timesketch
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆34Updated 3 years ago
• moullos / Mitigate
  Machine Interrogation To Identify Gaps & Techniques for Execution
  ☆32Updated 2 years ago
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 2 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• stvemillertime / Cerebro
  Scripts and lists to help generate YARA friendly string mutations
  ☆21Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆52Updated 11 months ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 4 years ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 4 years ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated last month
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆27Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 3 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated last year
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• slaughterjames / excelpeek
  ☆38Updated 3 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆55Updated this week
• mthcht / ThreatHunting-Keywords-sigma-rules
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆55Updated 2 months ago