Alternatives and similar repositories for skeleton

Users that are interested in skeleton are comparing it to the libraries listed below

• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆67Updated last year
• NVISOsecurity / nviso-cti
  ☆44Updated 5 months ago
• iomoath / yara-scanner
  YaraScanner is a file pattern-matching tool based on YARA rules.
  ☆59Updated 2 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆42Updated 3 weeks ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆87Updated 3 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• mitre / access
  A CALDERA plugin
  ☆25Updated 2 months ago
• mlgualtieri / PurpleTeamSummit
  ☆28Updated 4 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆106Updated 3 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆77Updated 3 years ago
• CronUp / Malware-IOCs
  ☆96Updated 7 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆53Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆116Updated 4 years ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆45Updated 4 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 4 months ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 3 years ago
• MalGamy / YARA_Rules
  ☆67Updated 2 years ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆156Updated 7 months ago
• jacopodl / Pulsar
  Data exfiltration and covert communication tool
  ☆39Updated 2 years ago
• RedSiege / GPPDeception
  This script generates a groups.xml file that mimics a real GPP to create a new user on domain-joined computers
  ☆46Updated 5 years ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆117Updated last year