Alternatives and similar repositories for ssdeep-elastic

Users that are interested in ssdeep-elastic are comparing it to the libraries listed below

• zom3y3 / ssdc

  View on GitHub
  ssdeep cluster analysis for malware files
  ☆31Jun 5, 2020Updated 5 years ago
• a4lg / fast-ssdeep-clus

  View on GitHub
  Parallel ssdeep clustering kit
  ☆20Dec 24, 2017Updated 8 years ago
• nccgroup / yaml2yara

  View on GitHub
  Generate bulk YARA rules from YAML input
  ☆22Feb 3, 2020Updated 6 years ago
• neu5ron / domaininformation

  View on GitHub
  domain information in JSON format
  ☆10Jun 7, 2017Updated 8 years ago
• eCrimeLabs / cratos-fastapi

  View on GitHub
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Sep 21, 2025Updated 4 months ago
• COSSAS / sacti

  View on GitHub
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Oct 24, 2022Updated 3 years ago
• MISP / misp-guard

  View on GitHub
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆18Jan 9, 2026Updated last month
• jonticknor / ElasticPhish

  View on GitHub
  Proof-of-concept for phishing intelligence in Elastic
  ☆15Apr 30, 2019Updated 6 years ago
• DevoInc / sightingdb

  View on GitHub
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆17Apr 11, 2024Updated last year
• abusesa / idiokit

  View on GitHub
  A Python 2.x library for asynchronous tasks
  ☆13May 8, 2019Updated 6 years ago
• DissectMalware / yaradbg-backend

  View on GitHub
  ☆25Jan 8, 2024Updated 2 years ago
• anthrotype / verify-sigs

  View on GitHub
  Automatically exported from code.google.com/p/verify-sigs
  ☆17Sep 2, 2016Updated 9 years ago
• matthewdunwoody / PS_logging_reg

  View on GitHub
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Jun 20, 2016Updated 9 years ago
• blookot / elastic-releases

  View on GitHub
  Listing releases of the Elastic stack with new features and references
  ☆19Feb 4, 2026Updated last week
• neu5ron / dnssinkholelist

  View on GitHub
  dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…
  ☆18Apr 13, 2016Updated 9 years ago
• oasis-open / cti-pattern-matcher

  View on GitHub
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Aug 1, 2022Updated 3 years ago
• SupportIntelligence / Icewater

  View on GitHub
  16,432 Free Yara rules created by
  ☆390Jun 1, 2019Updated 6 years ago
• archcloudlabs / r2elk

  View on GitHub
  Radare2 Metadata Extraction to Elasticsearch
  ☆23May 21, 2024Updated last year
• karttoon / iocs

  View on GitHub
  IoC's, PCRE's, YARA's etc
  ☆24Mar 25, 2025Updated 10 months ago
• fr0gger / Yara-Unprotect

  View on GitHub
  This repository regroups the Yara Rules for the Unprotect Project
  ☆26Nov 19, 2020Updated 5 years ago
• tridentli / trident

  View on GitHub
  Trident is a trusted and secure communication platform for enabling better communication between groups of trusted parties
  ☆22Apr 17, 2025Updated 9 months ago
• farsightsec / dnstable

  View on GitHub
  encoding format, library, and utilities for passive DNS data
  ☆27Mar 29, 2024Updated last year
• ahhh / YARA

  View on GitHub
  a collection of yara rules for binary analysis
  ☆24Aug 24, 2017Updated 8 years ago
• wrayjustin / yaids

  View on GitHub
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆26Oct 20, 2022Updated 3 years ago
• adulau / threat-intelligence.eu

  View on GitHub
  threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…
  ☆49Nov 3, 2025Updated 3 months ago
• SIFalcon / Detection

  View on GitHub
  ☆22Jul 7, 2023Updated 2 years ago
• extremecoders-re / bnpy

  View on GitHub
  An architecture plugin for binary ninja to disassemble raw python bytecode
  ☆29Nov 12, 2017Updated 8 years ago
• hashlookup / poppy

  View on GitHub
  Rust implementation of the DCSO Bloom filter
  ☆29Jul 15, 2025Updated 6 months ago
• threat-punter / security-publications

  View on GitHub
  Detection Engineering research, open-source tools, conference presentations, and technical publications shared with the security communit…
  ☆28Dec 17, 2025Updated last month
• immortalp0ny / yarg

  View on GitHub
  Yet another rule generator for Yara
  ☆29Jun 6, 2025Updated 8 months ago
• c01db33f / reil

  View on GitHub
  REIL translation library
  ☆36May 6, 2016Updated 9 years ago
• cmu-sei / BigGrep

  View on GitHub
  A scalable search index for binary files
  ☆116Mar 15, 2018Updated 7 years ago
• ZSShen / MeltingPot

  View on GitHub
  A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
  ☆26Jan 5, 2019Updated 7 years ago
• quadrantsec / meer

  View on GitHub
  Meer is a "spooler" for Suricata / Sagan.
  ☆30Jun 21, 2023Updated 2 years ago
• freetaxii / server

  View on GitHub
  A cyber threat intelligence server based on TAXII 2 and written in Golang
  ☆32Sep 19, 2019Updated 6 years ago
• mitre / stix2patterns_translator

  View on GitHub
  Translate STIX 2 Patterning Queries
  ☆31Oct 4, 2018Updated 7 years ago
• usualsuspect / ida_stuff

  View on GitHub
  ☆27Jun 4, 2018Updated 7 years ago
• stratosphereips / whois-similarity-distance

  View on GitHub
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Dec 8, 2022Updated 3 years ago
• jeFF0Falltrades / IoCs

  View on GitHub
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆29Jun 11, 2020Updated 5 years ago