Alternatives and similar repositories for maldoca:

Users that are interested in maldoca are comparing it to the libraries listed below

• avast / yaramod
  Parsing of YARA rules into AST and building new rulesets in C++.
  ☆121Updated 3 weeks ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆107Updated this week
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆41Updated 3 weeks ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆89Updated this week
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆263Updated 2 months ago
• InQuest / yara-rules-vt
  Collection of YARA rules designed for usage through VirusTotal.com.
  ☆66Updated 10 months ago
• google / permhash
  ☆43Updated 10 months ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆67Updated last year
• avast / yarang
  Alternative YARA scanning engine
  ☆67Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆68Updated 10 months ago
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆30Updated 4 years ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆61Updated last year
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆47Updated 3 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated last month
• stoerchl / yara_zip_module
  ☆13Updated 2 years ago
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆72Updated last month
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆108Updated 3 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆31Updated 5 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆113Updated last year
• zodiacon / syllabi
  ☆61Updated last year
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆89Updated last year
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆142Updated last year
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆38Updated last year
• avast / yls
  YARA Language Server
  ☆68Updated this week
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
  ☆112Updated 2 months ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆31Updated last year
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆157Updated 2 years ago
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆46Updated 3 years ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆69Updated 4 years ago
• bootkitsbook / bootkits
  ☆63Updated 5 years ago