Alternatives and similar repositories for pcaps:

Users that are interested in pcaps are comparing it to the libraries listed below

• bigsnarfdude / Malware-Probabilistic-Data-Structres
  NSRL BloomFilter, Mandiant BloomFilter, Hyperloglog Malware Data Structure
  ☆15Updated 11 years ago
• Rurik / FileInfo
  Basic file metadata gathering script
  ☆21Updated last week
• reed1713 / ELAT
  Event Log Analysis Tools
  ☆29Updated 8 years ago
• pidydx / PyIOCe
  Python OpenIOC Editor
  ☆17Updated 9 years ago
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 8 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• malware-kitten / public_yara_rules
  a collection of public yara rules
  ☆26Updated 5 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• cloudjunky / malware-traffic
  Download all packet captures from http://malware-traffic-analysis.net/
  ☆20Updated 10 years ago
• serializingme / emofishes
  Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the on…
  ☆15Updated 2 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 7 years ago
• k1p0d / zeus_reports_len
  Remote timing attack exploit against most Zeus/Zbot variants including Citadel, Ice9, Zeus 2.3, KINS/ZeusVM etc..
  ☆24Updated 9 years ago
• mandiant / rvmi-rekall
  Rekall Forensics and Incident Response Framework with rVMI extensions
  ☆33Updated 4 years ago
• Rurik / PE_Carver
  Carves EXEs from given data files, using intelligent carving based upon PE headers
  ☆38Updated 7 years ago
• hiddenillusion / FileLookup
  Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)
  ☆30Updated 10 years ago
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 8 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago
• w8mej / IRKnowledge
  A curated list of tools for incident response
  ☆29Updated last year
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆29Updated 4 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 3 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• abhinavbom / Yara-Rules
  A collection of Yara rules I have created so far
  ☆16Updated 4 years ago
• CIRCL / pe32-cert-dump
  Dump and parse embedded certificates from Windows binaries
  ☆11Updated 13 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆25Updated 4 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• Kafeine / public
  ☆19Updated 6 years ago
• darienhuss / dns_sigs
  Create Suricata and Snort DNS signatures given a single domain or list of domains in a file.
  ☆18Updated 7 years ago