Alternatives and similar repositories for sandfly-entropyscan

Users that are interested in sandfly-entropyscan are comparing it to the libraries listed below

• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆169Updated 3 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆144Updated 3 months ago
• microsoft / MSTIC-Sysmon
  Anything Sysmon related from the MSTIC R&D team
  ☆153Updated 11 months ago
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆288Updated 3 weeks ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆105Updated 3 years ago
• theflakes / sigma_to_wazuh
  Convert Sigma rules to Wazuh rules
  ☆65Updated last year
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆104Updated 3 weeks ago
• elastic / labs-releases
  Elastic Security Labs releases
  ☆67Updated 2 weeks ago
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.
  ☆127Updated 5 months ago
• The-DFIR-Report / Yara-Rules
  ☆69Updated 3 months ago
• viper-framework / viper2
  File analysis and management framework.
  ☆83Updated last year
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 3 months ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆108Updated 5 months ago
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆139Updated last year
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆223Updated this week
• ThreatLabz / iocs
  This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports
  ☆73Updated 6 months ago
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆99Updated 11 months ago
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆157Updated 2 years ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆121Updated 3 weeks ago
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆202Updated 2 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆131Updated 9 months ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆93Updated 10 months ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆118Updated 8 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆138Updated 10 months ago
• codeyourweb / fastfinder
  Incident Response - Fast suspicious file finder
  ☆242Updated 3 years ago
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆125Updated 10 months ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆146Updated last year