Alternatives and similar repositories for rekall

Users that are interested in rekall are comparing it to the libraries listed below

• viper-framework / viper
  Binary analysis and management framework
  ☆1,550Updated 2 years ago
• 504ensicsLabs / LiME
  LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…
  ☆1,839Updated 9 months ago
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,171Updated last week
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆1,966Updated 3 months ago
• log2timeline / plaso
  Super timeline all the things
  ☆1,886Updated last week
• sleuthkit / sleuthkit
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…
  ☆2,838Updated this week
• VirusTotal / yara-python
  The Python interface for YARA
  ☆699Updated 2 months ago
• google / grr
  GRR Rapid Response: remote live forensics for incident response
  ☆4,938Updated last month
• Cisco-Talos / pyrebox
  Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
  ☆1,671Updated last year
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,162Updated 7 years ago
• ForensicArtifacts / artifacts
  Digital Forensics artifact repository
  ☆1,144Updated this week
• lmco / laikaboss
  Laika BOSS: Object Scanning System
  ☆748Updated 7 months ago
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,139Updated 2 weeks ago
• GoSecure / malboxes
  Builds malware analysis Windows VMs so that you don't have to.
  ☆1,044Updated 3 years ago
• mandiant / flare-floss
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,601Updated last week
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,800Updated last week
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,068Updated last year
• buffer / thug
  Python low-interaction honeyclient
  ☆1,016Updated 3 weeks ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,676Updated 3 months ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆905Updated 3 months ago
• vivisect / vivisect
  ☆967Updated 2 weeks ago
• KasperskyLab / klara
  Kaspersky's GReAT KLara
  ☆709Updated last year
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆619Updated 5 years ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,697Updated last week
• maliceio / malice
  VirusTotal Wanna Be - Now with 100% more Hipster
  ☆1,688Updated 2 years ago
• aptnotes / data
  APTnotes data
  ☆1,735Updated 7 months ago
• Invoke-IR / PowerForensics
  PowerForensics provides an all in one platform for live disk forensic analysis
  ☆1,408Updated last year
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,595Updated 8 months ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆502Updated last year
• guelfoweb / peframe
  PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
  ☆613Updated 2 years ago