Alternatives and similar repositories for ssdeep

Users that are interested in ssdeep are comparing it to the libraries listed below

• VirusTotal / yara-python
  The Python interface for YARA
  ☆711Updated 5 months ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆641Updated last week
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,870Updated last week
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,215Updated this week
• trendmicro / tlsh
  ☆806Updated last year
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,728Updated 3 weeks ago
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆486Updated 4 months ago
• reversinglabs / reversinglabs-yara-rules
  ReversingLabs YARA Rules
  ☆871Updated 3 weeks ago
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,197Updated 2 months ago
• BayshoreNetworks / yextend
  Yara integrated software to handle archive file data.
  ☆319Updated 3 years ago
• decalage2 / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆1,112Updated last year
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,178Updated last month
• libyal / libewf
  Libewf is a library to access the Expert Witness Compression Format (EWF)
  ☆289Updated last year
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,087Updated last year
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆758Updated 11 months ago
• KasperskyLab / klara
  Kaspersky's GReAT KLara
  ☆718Updated last year
• Neo23x0 / yarAnalyzer
  Yara Rule Analyzer and Statistics
  ☆393Updated 2 years ago
• guelfoweb / peframe
  PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
  ☆615Updated 3 years ago
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆2,021Updated last month
• log2timeline / plaso
  Super timeline all the things
  ☆1,954Updated this week
• pan-unit42 / iocs
  Indicators from Unit 42 Public Reports
  ☆726Updated 2 months ago
• buffer / thug
  Python low-interaction honeyclient
  ☆1,021Updated last week
• cuckoosandbox / monitor
  The new Cuckoo Monitor.
  ☆347Updated last year
• mikesxrs / Open-Source-YARA-rules
  YARA Rules I come across on the internet
  ☆352Updated last year
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆369Updated 4 years ago
• volatilityfoundation / profiles
  Volatility profiles for Linux and Mac OS X
  ☆325Updated 3 years ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,770Updated last week
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆509Updated last year
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆589Updated last week
• rowingdude / analyzeMFT
  analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…
  ☆505Updated 2 months ago