Alternatives and similar repositories for trapmine-linux-sensor

Users that are interested in trapmine-linux-sensor are comparing it to the libraries listed below

• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆165Updated last year
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆111Updated 4 months ago
• binalyze / tigma
  Sigma Engine implementation in TypeScript
  ☆28Updated 2 years ago
• 4n6Engineer / MalwareChecker
  Malware Checker Tool generates an HTML report by comparing Hashes, Ip Addresses and URL Addresses through the VirusTotal database.
  ☆36Updated 3 years ago
• AhmetPayaslioglu / YaraRules
  ☆21Updated 2 years ago
• codeyourweb / irma
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Updated 4 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• MALWARE-ATLAS / ATLAS
  ATLAS - Malware Analysis Description
  ☆21Updated 2 years ago
• fkie-cad / socbed
  A Self-Contained Open-Source Cyberattack Experimentation Testbed
  ☆43Updated 4 months ago
• robindimyan / covid-cyber-response
  ☆15Updated 5 years ago
• eybisi / misc
  ☆19Updated 3 years ago
• VirusTotal / gyp
  gyp: A pure Go YARA parser
  ☆106Updated last year
• binalyze / dfir-lab
  ☆10Updated 2 months ago
• hardenedvault / ved-ebpf
  VED-eBPF: Kernel Exploit and Rootkit Detection using eBPF
  ☆167Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 10 months ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆107Updated 5 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆72Updated 3 years ago
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 3 years ago
• mole-ids / mole
  Yara powered NIDS with high speed packet capture powered by PF_RING
  ☆69Updated last year
• Velocidex / evtx
  Golang Parser for Microsoft Event Logs
  ☆105Updated 4 months ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆112Updated 3 years ago
• adobe / libLOL
  ☆50Updated 3 months ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆28Updated last month
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆140Updated last year
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆36Updated last month
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆38Updated 3 months ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated 2 years ago