Alternatives and similar repositories for BoomBox

Users that are interested in BoomBox are comparing it to the libraries listed below

• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆137Updated 4 years ago
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆428Updated 2 months ago
• mandiant / ShimCacheParser
  ☆276Updated 2 years ago
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆757Updated 6 months ago
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆313Updated last year
• davidpany / WMI_Forensics
  ☆302Updated 4 years ago
• mikesxrs / Open-Source-YARA-rules
  YARA Rules I come across on the internet
  ☆340Updated last year
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆354Updated last month
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆216Updated last year
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆383Updated 6 years ago
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 4 years ago
• R3MRUM / PSDecode
  PowerShell script for deobfuscating encoded PowerShell scripts
  ☆424Updated 4 years ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆375Updated 3 years ago
• mbevilacqua / appcompatprocessor
  "Evolving AppCompat/AmCache data analysis beyond grep"
  ☆204Updated 3 years ago
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆264Updated 3 years ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated 2 years ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆96Updated last week
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• carbonblack / tau-tools
  A repo containing tools developed by Carbon Black's Threat Research Team: Threat Analysis Unit
  ☆234Updated 3 years ago
• ubeeri / Invoke-UserSimulator
  Simulates common user behaviour on local and remote Windows hosts.
  ☆282Updated 7 years ago
• orlikoski / CDQR
  The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…
  ☆337Updated 2 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 5 years ago
• chenerlich / FCL
  FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
  ☆467Updated 4 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆272Updated last year
• randomuserid / Adama
  Searches For Threat Hunting and Security Analytics
  ☆241Updated 2 months ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆196Updated 3 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• netspooky / inhale
  A malware analysis and classification tool.
  ☆190Updated 3 years ago
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆353Updated 7 years ago
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆373Updated 2 years ago