Alternatives and similar repositories for mozitools

Users that are interested in mozitools are comparing it to the libraries listed below

• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆220Updated 4 years ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆87Updated 2 years ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆285Updated last year
• arieljt / VTCodeSimilarity-YaraGen
  ☆97Updated 5 years ago
• ifding / iot-malware
  Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code
  ☆313Updated 5 years ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆114Updated 4 years ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆110Updated this week
• FutureComputing4AI / AutoYara
  Automated Yara Rule generation using Biclustering
  ☆77Updated 4 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆168Updated 3 years ago
• denisugarte / PowerDrive
  A tool for de-obfuscating PowerShell scripts
  ☆71Updated 6 years ago
• plyara / plyara
  Parse YARA rules and operate over them more easily.
  ☆195Updated last year
• carbonblack / binee
  Binee: binary emulation environment
  ☆530Updated 2 years ago
• danielplohmann / mcrit
  The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…
  ☆96Updated 3 weeks ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆180Updated 2 years ago
• hyuunnn / Hyara
  Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
  ☆242Updated last year
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆625Updated 2 years ago
• silence-is-best / c2db
  c2 traffic
  ☆194Updated 3 years ago
• croemheld / lkm-rootkit
  A LKM rootkit for most newer kernel versions.
  ☆180Updated 8 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆179Updated 6 years ago
• buffer / libemu
  x86 emulation and shellcode detection
  ☆154Updated last year
• evilsocket / ergo-pe-av
  🧠 🦠 An artificial neural network and API to detect Windows malware, based on Ergo and LIEF.
  ☆182Updated 6 years ago
• intezer / yara-rules
  ☆128Updated last year
• avast / yaramod
  Parsing of YARA rules into AST and building new rulesets in C++.
  ☆129Updated 2 weeks ago
• TakahiroHaruyama / ida_haru
  scripts/plugins for IDA Pro
  ☆177Updated last year
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆87Updated 6 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆262Updated 2 years ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆177Updated last week
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆208Updated 12 years ago
• danielplohmann / smda
  SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.
  ☆252Updated 3 weeks ago
• sophos / yaraml_rules
  Security ML models encoded as Yara rules
  ☆215Updated 2 years ago