Alternatives and similar repositories for mal:

Users that are interested in mal are comparing it to the libraries listed below

• evild3ad / isodump
  isodump - ISO dump utility
  ☆40Updated 5 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• ArsenalRecon / NetWireLogDecoder
  Scan and decode NetWire logs
  ☆11Updated 2 years ago
• dfaram7 / pptshots
  Finding sensitive information in the trimmed parts of cropped images
  ☆28Updated 3 years ago
• qsecure-labs / Sp00fer
  Sp00fer blog post -
  ☆25Updated 2 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• nccgroup / mimikatz-detector-busylight
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆20Updated 2 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆24Updated 4 years ago
• password-reset / TrelloC2
  Simple C2 over the Trello API
  ☆37Updated 2 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated last year
• mauronz / binja-emotet
  ☆18Updated 4 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆30Updated 2 years ago
• S3cur3Th1sSh1t / TeamViewerDecrypt
  ☆16Updated 4 years ago
• fr0gger / SuperPeHasher
  SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.
  ☆27Updated 3 years ago
• arieljt / VTSubmitter-Maltego
  A Maltego transform for VirusTotal Submitter Information
  ☆32Updated 5 years ago
• biitez / AWare
  PoC Ransomware with Coinbase Commerce integration built on C# .NET Framework (console) and PHP
  ☆24Updated 2 years ago
• ninoseki / rogue_one
  A rogue DNS detector
  ☆23Updated last year
• blacklanternsecurity / nmappalyzer
  A lightweight Python 3 Nmap wrapper that doesn't try too hard. Gracefully handles any Nmap command, providing access to all output types …
  ☆15Updated 3 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• svo80 / vti_search
  VirusTotal Intelligence Search
  ☆35Updated 4 years ago
• AdamWhiteHat / Judge-Jury-and-Executable
  A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQL…
  ☆79Updated 10 months ago
• HarmJ0y / red_team_tool_countermeasures
  ☆12Updated 4 years ago
• iAbdullahMughal / dscan
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Updated 2 months ago
• tasooshi / exfilkit
  Data exfiltration utility for testing detection capabilities
  ☆57Updated 3 years ago
• serrastusbear / NewDomainSearch
  Script to pull newly-registered domains and check for similarity against a provided word list.
  ☆13Updated 4 years ago
• byt3bl33d3r / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆16Updated 4 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆38Updated 2 years ago
• malwareinfosec / FiddleZAP
  ☆17Updated 3 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆27Updated 8 years ago