Alternatives and similar repositories for rekall

Users that are interested in rekall are comparing it to the libraries listed below

• viper-framework / viper
  Binary analysis and management framework
  ☆1,546Updated last year
• log2timeline / plaso
  Super timeline all the things
  ☆1,852Updated last week
• 504ensicsLabs / LiME
  LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…
  ☆1,816Updated 7 months ago
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,155Updated last month
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆1,925Updated last month
• sleuthkit / sleuthkit
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…
  ☆2,805Updated this week
• mandiant / flare-floss
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,545Updated this week
• GoSecure / malboxes
  Builds malware analysis Windows VMs so that you don't have to.
  ☆1,040Updated 3 years ago
• google / grr
  GRR Rapid Response: remote live forensics for incident response
  ☆4,896Updated last week
• VirusTotal / yara-python
  The Python interface for YARA
  ☆693Updated this week
• Cisco-Talos / pyrebox
  Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
  ☆1,665Updated last year
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,161Updated 7 years ago
• buffer / thug
  Python low-interaction honeyclient
  ☆1,013Updated this week
• maliceio / malice
  VirusTotal Wanna Be - Now with 100% more Hipster
  ☆1,687Updated 2 years ago
• KasperskyLab / klara
  Kaspersky's GReAT KLara
  ☆708Updated 10 months ago
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,065Updated last year
• ForensicArtifacts / artifacts
  Digital Forensics artifact repository
  ☆1,116Updated 5 months ago
• cuckoosandbox / cuckoo
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆5,690Updated 3 years ago
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,121Updated 3 weeks ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,647Updated last month
• volatilityfoundation / volatility
  An advanced memory forensics framework
  ☆7,700Updated 2 weeks ago
• omriher / CapTipper
  Malicious HTTP traffic explorer
  ☆717Updated 2 years ago
• panda-re / panda
  Platform for Architecture-Neutral Dynamic Analysis
  ☆2,596Updated this week
• OpenRCE / sulley
  A pure-python fully automated and unattended fuzzing framework.
  ☆1,436Updated 4 years ago
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆757Updated 6 months ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆898Updated last month
• google / grr-doc
  Documentation for the GRR Rapid Reponse framework
  ☆303Updated 8 months ago
• microsoft / avml
  AVML - Acquire Volatile Memory for Linux
  ☆949Updated this week
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,775Updated last week
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆324Updated 2 years ago