Alternatives and similar repositories for mal

Users that are interested in mal are comparing it to the libraries listed below

• evild3ad / isodump
  isodump - ISO dump utility
  ☆41Updated 6 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 6 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆32Updated 9 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆10Updated last year
• serrastusbear / NewDomainSearch
  Script to pull newly-registered domains and check for similarity against a provided word list.
  ☆13Updated 5 years ago
• malwageddon / iris-h
  Placeholder for IRIS-H Digital Forensics Tool
  ☆15Updated 7 years ago
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 6 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago
• arieljt / VTSubmitter-Maltego
  A Maltego transform for VirusTotal Submitter Information
  ☆35Updated 6 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆28Updated 6 years ago
• k-vitali / cryptomix-clop-ransomware
  ☆14Updated 6 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 7 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 6 years ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆27Updated 5 years ago
• iAbdullahMughal / dscan
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Updated 5 months ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 6 years ago
• devstorm2576916 / ethereum-grid-bot
  🔵 ethereum grid trading bot
  ☆35Updated last month
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• Rurik / Java_IDX_Parser
  Parses Java Cache IDX files
  ☆40Updated 7 years ago
• kirk-sayre-work / xlmulator
  Python emulator for Excel XLM macros.
  ☆18Updated 5 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆31Updated 3 years ago
• BinaryDefense / IcedDecrypt
  IcedID Decryption Tool
  ☆28Updated 4 years ago
• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 7 years ago
• itsreallynick / office-crackros
  Crack your macros like the math pros.
  ☆33Updated 8 years ago
• julianoborba / Ansible-Cuckoo
  This is a Ansible script for building a ready to go Cuckoo Sandbox server.
  ☆26Updated 7 years ago
• lucanag / emotet
  ☆10Updated 4 years ago
• blacklotuslabs / Research
  The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.
  ☆12Updated 4 years ago
• MHaggis / bookish-happiness
  OG Atomic Red Team
  ☆29Updated 7 years ago
• clr2of8 / DeployREMnux
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Updated 5 years ago