tylabs/quicksand external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

tylabs/quicksand

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tylabs/quicksand)

Close

tylabs / quicksandView on GitHubMore

• External links
• Readme badge

QuickSand document and PDF malware analysis tool written in Python

☆145Apr 13, 2026Updated last month

Alternatives and similar repositories for quicksand

Users that are interested in quicksand are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• tylabs / cryptam

  View on GitHub
  cryptam document malware analysis tool
  ☆13Jun 18, 2023Updated 2 years ago
• tylabs / pdfexaminer

  View on GitHub
  PDFExaminer Tool - Analyse PDF Malware
  ☆63Aug 12, 2021Updated 4 years ago
• tbarabosch / apihash_to_yara

  View on GitHub
  Generates YARA rules to detect malware using API hashing
  ☆17Mar 16, 2021Updated 5 years ago
• iAbdullahMughal / dscan

  View on GitHub
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Jan 10, 2026Updated 4 months ago
• kirk-sayre-work / xlmulator

  View on GitHub
  Python emulator for Excel XLM macros.
  ☆18May 25, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• g-les / 100DaysofYARA

  View on GitHub
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Jan 18, 2023Updated 3 years ago
• c3rb3ru5d3d53c / mwdb-feeds

  View on GitHub
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34May 17, 2021Updated 5 years ago
• fr0gger / MalwareMuncher

  View on GitHub
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆46Feb 24, 2023Updated 3 years ago
• hallazzang / ole-py

  View on GitHub
  Lightweight Microsoft OLE file parser in pure Python
  ☆20Oct 17, 2019Updated 6 years ago
• OllieJC / tbat

  View on GitHub
  Threat Box Assessment Tool
  ☆19Mar 5, 2026Updated 2 months ago
• closed-systems / strangerstrings

  View on GitHub
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆54Sep 11, 2025Updated 8 months ago
• DissectMalware / MDIExtractor

  View on GitHub
  ☆15Nov 25, 2021Updated 4 years ago
• stairwell-inc / threat-research

  View on GitHub
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Jan 31, 2024Updated 2 years ago
• anyrun / YARA

  View on GitHub
  Maintained by the ANY.RUN team, this repository provides YARA rules to help detect and classify various malware families and other malici…
  ☆28Nov 1, 2025Updated 6 months ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• Neo23x0 / yaraQA

  View on GitHub
  YARA rule analyzer to improve rule quality and performance
  ☆113Jan 18, 2026Updated 4 months ago
• montysecurity / InfraSpyder

  View on GitHub
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆29Apr 22, 2023Updated 3 years ago
• StrangerealIntel / DeltaFlare

  View on GitHub
  ☆12Jun 29, 2021Updated 4 years ago
• cxiao / rust-reversing-workshop-northsec-2024

  View on GitHub
  ☆23May 24, 2024Updated last year
• sisoma2 / malware_analysis

  View on GitHub
  Scripts, Yara rules and other files developed during malware investigations
  ☆27Aug 19, 2022Updated 3 years ago
• NintendoWii / TheGreaterWall

  View on GitHub
  ☆21Aug 13, 2025Updated 9 months ago
• avast / yls

  View on GitHub
  YARA Language Server
  ☆74Feb 3, 2026Updated 3 months ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 7 years ago
• Recruit-CSIRT / macApfsMounter

  View on GitHub
  A small tool to easily mount APFS image on macOS for forensics.
  ☆17Jul 30, 2020Updated 5 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• xorhex / mlget

  View on GitHub
  A golang CLI tool to download malware from a variety of sources.
  ☆151Jul 3, 2025Updated 10 months ago
• ald3ns / copy-as-yara

  View on GitHub
  This is a little plugin to copy disassembly in a way that is usable in YARA rules!
  ☆48Apr 14, 2025Updated last year
• stvemillertime / RonnieColemanYARAParser

  View on GitHub
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Nov 13, 2022Updated 3 years ago
• matonis / yara_tools

  View on GitHub
  Create an entire YARA rule via Python? Whhhhhhaatttt?
  ☆74Jan 12, 2019Updated 7 years ago
• 3gbCyber / IR-Last-Write-Time

  View on GitHub
  Simple Script to Help You Find All Files Has Been Modified, Accessed, and Created In A Range Time.
  ☆27Dec 1, 2022Updated 3 years ago
• OTRF / infosec-jupyterthon

  View on GitHub
  A community event for security researchers to share their favorite notebooks
  ☆108Feb 15, 2024Updated 2 years ago
• mandiant / vbScript_deobfuscator

  View on GitHub
  Help deobfuscate VBScript
  ☆18Jul 1, 2022Updated 3 years ago
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• cudeso / dfir-iris-misp-timesketch

  View on GitHub
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆36Feb 2, 2022Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• DissectMalware / XLMMacroDeobfuscator

  View on GitHub
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆586May 5, 2024Updated 2 years ago
• deadeert / EWS

  View on GitHub
  Emulation Wrapper Solution is a IDA Pro plugin that brings emulator capacities to provide features such as debugging an mocking.
  ☆23May 25, 2023Updated 2 years ago
• 0xThiebaut / PCAPeek

  View on GitHub
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆24May 21, 2023Updated 2 years ago
• avast / yarang

  View on GitHub
  Alternative YARA scanning engine
  ☆73Aug 23, 2022Updated 3 years ago
• telekom-security / malware_analysis

  View on GitHub
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆123Mar 4, 2026Updated 2 months ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap

  View on GitHub
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Jul 14, 2019Updated 6 years ago
• idiom / OLEPackagerFormat

  View on GitHub
  OLE Package Format Documentation
  ☆23Jun 13, 2020Updated 5 years ago