Alternatives and similar repositories for mowr:

Users that are interested in mowr are comparing it to the libraries listed below

• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• SekoiaLab / FastIR_Agent
  FastIR Agent is a Windows service to execute FastIR Collector on demand
  ☆14Updated 7 years ago
• jedisct1 / ipgrep
  Extract, defang, resolve names and IPs from text
  ☆23Updated last year
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆42Updated 8 years ago
• docbleach / DocBleach-Web
  It's like DocBleach, but in your browser
  ☆18Updated 5 years ago
• dutchcoders / troje
  Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.
  ☆45Updated 10 years ago
• eriktews / certificate-transparency-tools
  Tools to interact with a certificate transparency server
  ☆22Updated 9 years ago
• infobyte / distro_checker
  Cross Distribution Exploit Testing
  ☆27Updated 9 years ago
• blacktop / language-yara
  Yara syntax highlighting
  ☆25Updated 3 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• k1p0d / zeus_reports_len
  Remote timing attack exploit against most Zeus/Zbot variants including Citadel, Ice9, Zeus 2.3, KINS/ZeusVM etc..
  ☆24Updated 9 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆20Updated last year
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 5 months ago
• fygrave / ndf
  Network Defender Toolkit
  ☆18Updated 11 years ago
• shellntel-acct / websocket_egress
  Websocket based egress tester
  ☆20Updated 8 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• Phoul / yara_rules
  yara rules for crypto detection
  ☆30Updated 10 years ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 7 years ago
• subinacls / Filibuster
  ☆27Updated 7 years ago
• unixist / postex
  post-exploitation tools
  ☆15Updated 7 years ago
• defuse / dnsfs
  Host files with DNS
  ☆32Updated 9 years ago
• corelan / certmon
  Certificate Expiration Monitor script
  ☆27Updated 6 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• quarkslab / irma-frontend
  IRMA frontend
  ☆25Updated 8 years ago
• quarkslab / irma-ansible-old
  IRMA ansible
  ☆24Updated 8 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆45Updated 9 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆28Updated 5 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago