Alternatives and similar repositories for capa-testfiles

Users that are interested in capa-testfiles are comparing it to the libraries listed below

• ernw / quarantine-formats
  Documentation and parsers for different anti-virus quarantine formats.
  ☆42Updated 4 years ago
• jstrosch / graph-maldoc-similar-images
  A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…
  ☆21Updated 3 years ago
• accidentalrebel / mbcscan
  Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.
  ☆22Updated 3 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆43Updated 4 years ago
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆55Updated 4 years ago
• 3vangel1st / 100DaysOfYARA
  ☆27Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 3 years ago
• intezer / analyze-scripts
  ☆27Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆51Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆118Updated 2 years ago
• hatching / roach
  Cockroach is your primitive & immortal swiss army knife.
  ☆49Updated 3 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated 2 years ago
• ufrisk / MemProcFS-plugins
  ☆61Updated last year
• lsoumille / Yara_Merger
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆30Updated 7 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆21Updated 5 years ago
• tbarabosch / apihash_to_yara
  Generates YARA rules to detect malware using API hashing
  ☆17Updated 4 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆63Updated 4 years ago
• redcanaryco / exploit-primitive-playground
  ☆64Updated last year
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 5 years ago
• y3n11 / Captain
  Userland API monitor for threat hunting
  ☆58Updated 5 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆72Updated 3 years ago
• 100DaysofYARA / 2022
  ☆23Updated 2 years ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆27Updated 2 weeks ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆37Updated 2 years ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆72Updated 3 years ago
• avast / yls
  YARA Language Server
  ☆74Updated last week
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Updated 2 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆62Updated 5 months ago