Alternatives and similar repositories for assorted

Users that are interested in assorted are comparing it to the libraries listed below

• psrok1 / emu-strings
  Emu-strings project - JScript/VBScript automated dropper analysis system
  ☆18Updated 4 years ago
• Cisco-Talos / FIRST-server
  ☆32Updated last year
• williballenthin / LfLe
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆27Updated 9 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆52Updated 6 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆60Updated last year
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆49Updated 3 years ago
• MalwareLu / malware-lu
  Automatically exported from code.google.com/p/malware-lu
  ☆55Updated 6 years ago
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 8 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• sooshie / packerid
  ☆43Updated 5 years ago
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆42Updated 2 years ago
• 0xcpu / bonomen
  BONOMEN - Hunt for Malware Critical Process Impersonation
  ☆49Updated 4 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 8 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 8 years ago
• d3sre / Understanding_the_NDIS_6_stack
  Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"
  ☆41Updated 9 years ago
• alexander-hanel / ida_yara
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Updated 6 years ago
• elicn / xstrings
  Print the strings of encoded printable characters in files
  ☆12Updated 10 years ago
• cylance / GetNETGUIDs
  Extract GUIDs from .NET assemblies
  ☆21Updated 9 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• Cr4sh / secretnet_expl
  LPE exploits for Secret Net and Secret Net Studio
  ☆51Updated 9 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 6 years ago
• mnemonic-no / dnscache
  Volatility memory forensics plugin for extracting Windows DNS Cache
  ☆29Updated 8 years ago
• zynamics / msdn-plugin-ida
  Imports MSDN documentation into IDA Pro
  ☆51Updated 13 years ago
• CIRCL / PyRichHeader
  A Python parser for Rich Headers
  ☆15Updated 10 years ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆18Updated last year
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆37Updated 9 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 8 years ago
• glmcdona / MALM
  MALM: Malware Monitor
  ☆50Updated 12 years ago