Alternatives and similar repositories for mal

Users that are interested in mal are comparing it to the libraries listed below

• evild3ad / isodump
  isodump - ISO dump utility
  ☆40Updated 6 years ago
• OneLogicalMyth / toolkit
  Collection of scripts and tools that I created to aid in my testing.
  ☆14Updated 3 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆41Updated 6 years ago
• arieljt / VTSubmitter-Maltego
  A Maltego transform for VirusTotal Submitter Information
  ☆35Updated 6 years ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 5 years ago
• malwageddon / iris-h
  Placeholder for IRIS-H Digital Forensics Tool
  ☆14Updated 7 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆9Updated 8 months ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• fbruzzaniti / Capture-Py
  Capture-Py is a malware analysis tool that makes a copy of any files deleted or modified in a given directory and sub-directories. It was…
  ☆23Updated 8 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆31Updated 8 years ago
• 0xShaolin / CMD_Bypass
  Is command prompt blocked on your school/work computers? Here is an easy fix!
  ☆20Updated 5 years ago
• bonifield / volatilityGrapher
  Force-Directed Graph Generator for Volatility Ouputs
  ☆26Updated 6 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 4 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 6 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago
• r00k5A58 / pyc2
  simple c2 written in python to demonstrate security concepts
  ☆13Updated 6 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• fr0gger / SuperPeHasher
  SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.
  ☆28Updated 3 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆46Updated 8 years ago
• ewhitehats / kovterTools
  ☆35Updated 6 years ago
• Rurik / Java_IDX_Parser
  Parses Java Cache IDX files
  ☆39Updated 7 years ago
• iAbdullahMughal / dscan
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Updated 3 weeks ago
• MHaggis / bookish-happiness
  OG Atomic Red Team
  ☆29Updated 7 years ago
• JR0driguezB / malware_analysis
  Various snippets created during malware analysis
  ☆22Updated 7 years ago
• qsecure-labs / Sp00fer
  Sp00fer blog post -
  ☆26Updated 3 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆40Updated 8 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆61Updated 8 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago