Alternatives and similar repositories for BoomBox:

Users that are interested in BoomBox are comparing it to the libraries listed below

• mandiant / ShimCacheParser
  ☆275Updated last year
• CheckPointSW / Cuckoo-AWS
  Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…
  ☆136Updated 2 years ago
• mikesxrs / Open-Source-YARA-rules
  YARA Rules I come across on the internet
  ☆337Updated 10 months ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆370Updated 2 years ago
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆421Updated this week
• silence-is-best / c2db
  c2 traffic
  ☆189Updated 2 years ago
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆313Updated last year
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆219Updated last year
• davidpany / WMI_Forensics
  ☆297Updated 4 years ago
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 4 years ago
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆341Updated 2 weeks ago
• egaus / MaliciousMacroBot
  ☆151Updated 6 years ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆95Updated this week
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆216Updated 6 years ago
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆136Updated 4 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 4 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆336Updated 2 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆272Updated 9 months ago
• InQuest / sandboxapi
  Minimal, consistent Python API for building integrations with malware sandboxes.
  ☆138Updated last year
• intezer / yara-rules
  ☆125Updated 2 weeks ago
• dod-cyber-crime-center / DC3-MWCP
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆307Updated 2 weeks ago
• mbevilacqua / appcompatprocessor
  "Evolving AppCompat/AmCache data analysis beyond grep"
  ☆200Updated 3 years ago
• JPCERTCC / MalConfScan
  Volatility plugin for extracts configuration data of known malware
  ☆487Updated last year
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆219Updated 4 years ago
• Neo23x0 / munin
  Online hash checker for Virustotal and other services
  ☆821Updated 9 months ago
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆373Updated 2 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆237Updated 3 years ago
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆401Updated 3 weeks ago
• misterch0c / what_is_this_c2
  For all these times you're asking yourself "what is this panel again?"
  ☆253Updated last year