Alternatives and similar repositories for crxaminer

Users that are interested in crxaminer are comparing it to the libraries listed below

• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆66Updated last year
• referefref / aiocrioc
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆33Updated 7 months ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆52Updated last year
• hdm / ctail
  Tail Certificate Transparency logs and extract hostnames
  ☆112Updated 3 weeks ago
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆77Updated last month
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated 2 weeks ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆45Updated 8 months ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆64Updated last month
• Permiso-io-tools / RansomWhen
  RansomWhen is a tool to enumerate identities that can lock S3 Buckets using KMS, resulting in ransomwares, as well as detect occurances o…
  ☆55Updated 5 months ago
• elementalsouls / DumpLSASS
  ☆33Updated last year
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆121Updated 2 years ago
• nullenc0de / servicelens
  ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …
  ☆77Updated 8 months ago
• krdmnbrk / atomicgen.io
  A simple tool designed to create Atomic Red Team tests with ease.
  ☆44Updated 4 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆26Updated 2 years ago
• LowOrbitSecurity / gubble
  gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…
  ☆77Updated last month
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆47Updated 4 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆69Updated last month
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆82Updated last year
• HackingLZ / IndicatorOfCanary
  Canary Detection
  ☆183Updated last month
• thinkst / defending-off-the-land
  Assortment of scripts and tools for our Blackhat EU 2024 talk
  ☆95Updated 5 months ago
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆36Updated 9 months ago
• nccgroup / MetadataPlus
  A tool to use novel locations to extract metadata from Office documents.
  ☆62Updated 2 years ago
• tsale / EDR-Telemetry-Website
  ☆74Updated 2 weeks ago
• stephenbradshaw / aws_url_signer
  POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
  ☆58Updated last year
• Censys-Research / censeye
  ☆146Updated last month
• Neo23x0 / tiny-shells
  All kinds of tiny shells
  ☆58Updated 2 years ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆37Updated 5 months ago
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆24Updated 2 weeks ago
• LOTTunnels / LOTTunnels.github.io
  ☆103Updated last week
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆111Updated 3 months ago