Alternatives and similar repositories for NapierOne:

Users that are interested in NapierOne are comparing it to the libraries listed below

• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆35Updated last year
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• jstrosch / graph-maldoc-similar-images
  A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…
  ☆20Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆43Updated last year
• julupu / jamsomware
  Educational ransomware for evaluating ransomware detection tools
  ☆8Updated last year
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆45Updated last year
• accidentalrebel / mbcscan
  Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.
  ☆21Updated 2 years ago
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆62Updated 11 months ago
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 2 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆29Updated last year
• dfxml-working-group / dfxml_python
  Digital Forensics XML packages in Python
  ☆15Updated 7 months ago
• ArsenalRecon / SdbaParser
  Parser for Sdba memory pool tags
  ☆17Updated 3 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆50Updated 10 months ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆43Updated 2 years ago
• woanware / etw-event-dumper
  ☆32Updated 2 years ago
• usualsuspect / yara_vt_mock
  Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
  ☆21Updated last year
• DTonomy-Inc / Ransomware
  A curated list of Ransomware IoCs and Decryptors
  ☆10Updated 3 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• InQuest / microsoft-office-macro-clustering
  ☆18Updated last year
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆22Updated 10 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆38Updated last month
• k3idii / ION
  Indicators of Normality
  ☆12Updated 2 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated 9 months ago
• CYBERCOM-Malware-Alert / IOCs
  ☆19Updated 2 years ago
• hvs-consulting / ioc_signatures
  Repository with selected IOCs and YARA rules for threat hunting.
  ☆35Updated last month
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆31Updated last year
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 2 years ago
• 100DaysofYARA / 2022
  ☆22Updated 2 years ago