Alternatives and similar repositories for trapmine-linux-sensor

Users that are interested in trapmine-linux-sensor are comparing it to the libraries listed below

• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆113Updated 7 months ago
• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆167Updated last year
• 4n6Engineer / MalwareChecker
  Malware Checker Tool generates an HTML report by comparing Hashes, Ip Addresses and URL Addresses through the VirusTotal database.
  ☆36Updated 3 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• binalyze / tigma
  Sigma Engine implementation in TypeScript
  ☆28Updated 2 years ago
• iomoath / yara-scanner
  YaraScanner is a file pattern-matching tool based on YARA rules.
  ☆60Updated 2 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• MALWARE-ATLAS / ATLAS
  ATLAS - Malware Analysis Description
  ☆21Updated 2 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆75Updated 4 years ago
• AhmetPayaslioglu / YaraRules
  ☆22Updated 2 years ago
• Loginsoft-LLC / Linux-Exploit-Detection
  Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma
  ☆21Updated 2 years ago
• oz9un / log-slapper
  log-slapper is an open-source offensive security tool designed for red-team operations as the post-exploit module and assessing your Splu…
  ☆24Updated last year
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆106Updated 3 months ago
• robindimyan / covid-cyber-response
  ☆14Updated 5 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆79Updated 2 years ago
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 4 years ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆95Updated 7 months ago
• SimoneCagol / sigma-rules-crawler
  ☆33Updated 3 months ago
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆168Updated last year
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last month
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• redcanaryco / ebpfmon
  ☆90Updated 2 months ago
• eybisi / misc
  ☆19Updated 3 years ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Updated 4 months ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆39Updated 6 months ago
• binalyze / dfir-lab
  ☆10Updated 5 months ago
• avast / yarang
  Alternative YARA scanning engine
  ☆73Updated 3 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆37Updated last month
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year