Alternatives and similar repositories for ViperMonkey

Users that are interested in ViperMonkey are comparing it to the libraries listed below

• silence-is-best / c2db
  c2 traffic
  ☆188Updated 2 years ago
• mgreen27 / Invoke-LiveResponse
  Invoke-LiveResponse
  ☆147Updated 3 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆96Updated 2 years ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆122Updated 8 years ago
• davidpany / WMI_Forensics
  ☆302Updated 4 years ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆75Updated 5 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆78Updated 8 months ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆211Updated 3 years ago
• MalwareArchaeology / ARTHIR
  ATT&CK Remote Threat Hunting Incident Response
  ☆200Updated 5 months ago
• MHaggis / CBR-Queries
  Collection of useful, up to date, Carbon Black Response Queries
  ☆83Updated 4 years ago
• 0xrawsec / gene
  Signature engine for all your logs
  ☆170Updated last year
• mbevilacqua / appcompatprocessor
  "Evolving AppCompat/AmCache data analysis beyond grep"
  ☆203Updated 3 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆104Updated this week
• marcurdy / dfir-toolset
  Dump of organized knowledge on DFIR
  ☆134Updated 3 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 4 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆132Updated 3 years ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆195Updated last month
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆137Updated 4 years ago
• vadim-hunter / Detection-Ideas-Rules
  Detection Ideas & Rules repository.
  ☆179Updated 3 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 5 years ago
• P4T12ICK / Sigma-Rule-Repository
  Sigma Detection Rule Repository
  ☆88Updated 4 years ago
• intezer / yara-rules
  ☆125Updated 3 months ago
• OTRF / SimuLand
  Cloud Templates and scripts to deploy mordor environments
  ☆129Updated 4 years ago
• MHaggis / hunt-detect-prevent
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆165Updated 6 years ago
• jsecurity101 / Windows-API-To-Sysmon-Events
  A repository that maps API calls to Sysmon Event ID's.
  ☆120Updated 2 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆137Updated 2 years ago
• 0xAnalyst / CB-Threat-Hunting
  ☆116Updated last year
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆261Updated 6 years ago
• airbus-cert / timeliner
  A rewrite of mactime, a bodyfile reader
  ☆37Updated 9 months ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆59Updated last year