Alternatives and similar repositories for capa-testfiles

Users that are interested in capa-testfiles are comparing it to the libraries listed below

• jstrosch / graph-maldoc-similar-images
  A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…
  ☆21Updated 4 years ago
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆49Updated 4 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆119Updated 2 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆79Updated 4 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated 2 years ago
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆56Updated 4 years ago
• 100DaysofYARA / 2022
  ☆23Updated 2 years ago
• CERT-Polska / mwdblib
  Client library for the mwdb service by CERT Polska.
  ☆42Updated 2 months ago
• intezer / analyze-scripts
  ☆27Updated 2 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 3 years ago
• 3vangel1st / 100DaysOfYARA
  ☆27Updated 3 years ago
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆20Updated 10 months ago
• ernw / quarantine-formats
  Documentation and parsers for different anti-virus quarantine formats.
  ☆42Updated 5 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆21Updated 5 years ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆111Updated 3 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆63Updated 5 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆113Updated 7 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆75Updated 3 years ago
• redcanaryco / exploit-primitive-playground
  ☆64Updated last year
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆51Updated 2 years ago
• avast / yls
  YARA Language Server
  ☆75Updated 3 weeks ago
• accidentalrebel / mbcscan
  Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.
  ☆22Updated 3 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 5 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆89Updated 3 months ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated 2 years ago
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Updated 2 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 5 years ago
• hvs-consulting / ioc_signatures
  Repository with selected IOCs and YARA rules for threat hunting.
  ☆35Updated 6 months ago