Alternatives and similar repositories for nsrllookup

Users that are interested in nsrllookup are comparing it to the libraries listed below

• rjhansen / nsrlsvr
  ☆83Updated 2 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆92Updated 6 years ago
• kevthehermit / YaraRules
  My Yara Rules Collection
  ☆52Updated 9 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• CrowdStrike / CrowdFMS
  CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…
  ☆128Updated 6 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆65Updated 4 years ago
• aboutsecurity / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆116Updated 6 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆63Updated 10 years ago
• grierforensics / officedissector
  Static analysis tools for Microsoft Office Open XML files and documents
  ☆70Updated 7 years ago
• tenable / yara-rules
  Repository of yara rules
  ☆60Updated 2 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 6 years ago
• davidhowell-tx / PS-DigitalForensics
  PowerShell scripts for Hard Drive forensics and parsing Windows Artifacts
  ☆56Updated 4 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆132Updated 3 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 3 years ago
• williballenthin / process-forest
  Reconstruct process trees from event logs
  ☆146Updated 4 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆97Updated 10 years ago
• sroberts / threat-intel-templates
  A set of templates for documenting threat intelligence
  ☆74Updated 12 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆195Updated 2 months ago
• mandiant / AuditParser
  AuditParser
  ☆60Updated 11 years ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆80Updated 9 years ago
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆118Updated last year
• wmetcalf / buildcuckoo-trusty
  A dumb set of scripts for building a cuckoo rig
  ☆61Updated 8 years ago
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆63Updated 6 years ago
• SparkITSolutions / phoenix
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆107Updated 5 years ago