Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
☆275Feb 26, 2026Updated last week
Alternatives and similar repositories for pandora
Users that are interested in pandora are comparing it to the libraries listed below
Sorting:
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆24May 29, 2023Updated 2 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆786Feb 22, 2026Updated last week
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆128Sep 24, 2023Updated 2 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆52Sep 1, 2023Updated 2 years ago
- USB Scanning device☆32Sep 16, 2025Updated 5 months ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆19Jan 9, 2026Updated last month
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆91Feb 18, 2026Updated 2 weeks ago
- Forensics artefact collection tool for systems running Microsoft Windows☆433Mar 26, 2025Updated 11 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Jan 18, 2022Updated 4 years ago
- Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.☆757Updated this week
- A Sigma based detection pipeline☆13Dec 15, 2023Updated 2 years ago
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆56Feb 13, 2026Updated 3 weeks ago
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆473Updated this week
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Dec 9, 2022Updated 3 years ago
- AIL framework - Analysis Information Leak framework☆885Updated this week
- Cisco Unfied Call Manager enumeration☆24Jul 13, 2022Updated 3 years ago
- A Python implementation of our efficient Bloom filter library.☆29Feb 27, 2020Updated 6 years ago
- CocktailParty is a data broker system based on phoenix framework☆23Apr 23, 2025Updated 10 months ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆31Mar 2, 2022Updated 4 years ago
- A collection of tips for using MISP.☆76Dec 11, 2024Updated last year
- Distributed malware processing framework based on Python, Redis and S3.☆462Updated this week
- Toolset to index the Mastodon federated network.☆13Nov 10, 2022Updated 3 years ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.☆23Feb 19, 2026Updated 2 weeks ago
- A set of crappy Python scripts to handle RSS in an Unix way.☆47Jul 2, 2024Updated last year
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆35Oct 21, 2025Updated 4 months ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆83Feb 21, 2024Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆86Dec 17, 2025Updated 2 months ago
- Malware repository component for samples & static configuration with REST API interface.☆379Updated this week
- PowerShell module for Office 365 and Azure log collection☆279Sep 22, 2025Updated 5 months ago
- RopstenCtf is an easy tool to interact with the ethereum ropsten network for ctf purpose and more.☆17Jul 18, 2022Updated 3 years ago
- The backend server handling API requests and task management☆56Updated this week
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- mmdb-server is an open source fast API server to lookup IP addresses for their geographic location.☆193Dec 22, 2025Updated 2 months ago
- An open source platform to support analysts to organise their case and tasks☆126Feb 26, 2026Updated last week
- AssemblyLine 4: File triage and malware analysis☆448Feb 26, 2026Updated last week
- Open Source EDR for Windows☆1,297Feb 25, 2023Updated 3 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆116Updated this week
- Defanged Indicator of Compromise (IOC) Extractor.☆569Aug 28, 2024Updated last year