Alternatives and similar repositories for malwarecookbook:

Users that are interested in malwarecookbook are comparing it to the libraries listed below

• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆16Updated 5 years ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆83Updated 4 years ago
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆78Updated 7 years ago
• ashwin-patil / threat-hunting-with-notebooks
  Repository with Sample threat hunting notebooks on Security Event Log Data Sources
  ☆63Updated 2 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆134Updated 3 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆62Updated 10 years ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 4 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 9 years ago
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 5 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 3 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 3 years ago
• jschicht / Indx2Csv
  An advanced parser for INDX records
  ☆27Updated 5 years ago
• mgreen27 / Invoke-LiveResponse
  Invoke-LiveResponse
  ☆147Updated 3 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 4 years ago
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆110Updated 7 years ago
• Jrotenberger / CBIRAutomation
  CB API scripts for IR, administration, etc.
  ☆32Updated 5 years ago
• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 4 years ago
• chaoticmachinery / frac_rift
  FRAC and RIFT
  ☆17Updated 6 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 11 months ago
• sans-blue-team / sec555-wiki
  ☆77Updated 5 years ago
• philhagen / for572-scripts
  A completely unsupported set of scripts used in SANS FOR572, Advanced Network Forensics and Analysis
  ☆26Updated 4 months ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆81Updated 3 years ago
• teamdfir / concordance
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆66Updated 4 years ago
• TTP0 / info
  Public Landing Page
  ☆16Updated 2 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated 2 years ago
• MHaggis / app_splunk_sysmon_hunter
  Splunk App to assist Sysmon Threat Hunting
  ☆38Updated 8 years ago
• siriussecurity / mitre-attack-mapping
  Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.
  ☆56Updated 4 years ago