Alternatives and similar repositories for IcedID

Users that are interested in IcedID are comparing it to the libraries listed below

• pr0xylife / Emotet
  IOC Collection 2022
  ☆57Updated 2 years ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• MalGamy / YARA_Rules
  ☆66Updated 2 years ago
• CronUp / Malware-IOCs
  ☆96Updated 3 months ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆119Updated 10 months ago
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 3 years ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆60Updated 9 months ago
• albertzsigovits / malware-notes
  Notes and IoCs of fresh malware
  ☆59Updated last year
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆56Updated last year
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆114Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆114Updated 3 years ago
• ashemery / WindowsDFIR
  Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…
  ☆78Updated 4 years ago
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆95Updated 2 years ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆57Updated 2 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆99Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆116Updated last year
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆245Updated 4 months ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆169Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• HuskyHacks / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆38Updated 3 years ago
• montysecurity / InfraHunter
  Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.
  ☆62Updated last year
• reecdeep / HiveV5_file_decryptor
  Hive v5 file decryption algorithm
  ☆34Updated 2 years ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆146Updated last year
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• StevenD33 / Lab-DFIR-SOC
  ☆68Updated 4 years ago