Alternatives and similar repositories for theZoo

Users that are interested in theZoo are comparing it to the libraries listed below

• rshipp / awesome-malware-analysis

  View on GitHub
  Defund the Police.
  ☆13,426Jun 7, 2024Updated last year
• mandiant / flare-vm

  View on GitHub
  A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…
  ☆8,338Dec 23, 2025Updated last month
• fabrimagic72 / malware-samples

  View on GitHub
  A collection of malware samples caught by several honeypots i manage
  ☆1,782Sep 15, 2021Updated 4 years ago
• EmpireProject / Empire

  View on GitHub
  Empire is a PowerShell and Python post-exploitation agent.
  ☆7,798Jan 19, 2020Updated 6 years ago
• RPISEC / Malware

  View on GitHub
  Course materials for Malware Analysis by RPISEC
  ☆3,998Aug 26, 2022Updated 3 years ago
• redcanaryco / atomic-red-team

  View on GitHub
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆11,570Updated this week
• PowerShellMafia / PowerSploit

  View on GitHub
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆12,860Aug 17, 2020Updated 5 years ago
• vxunderground / MalwareSourceCode

  View on GitHub
  Collection of malware source code for a variety of platforms in an array of different programming languages.
  ☆17,818Sep 10, 2025Updated 5 months ago
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,877Feb 3, 2026Updated last week
• Yara-Rules / rules

  View on GitHub
  Repository of yara rules
  ☆4,697Apr 17, 2024Updated last year
• byt3bl33d3r / CrackMapExec

  View on GitHub
  A swiss army knife for pentesting networks
  ☆9,050Dec 6, 2023Updated 2 years ago
• swisskyrepo / PayloadsAllTheThings

  View on GitHub
  A list of useful payloads and bypass for Web Application Security and Pentest/CTF
  ☆75,135Feb 2, 2026Updated last week
• n1nj4sec / pupy

  View on GitHub
  Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
  ☆8,940Mar 22, 2024Updated last year
• ayoubfaouzi / al-khaser

  View on GitHub
  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
  ☆6,849Feb 1, 2026Updated last week
• InQuest / malware-samples

  View on GitHub
  A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
  ☆930Mar 26, 2024Updated last year
• volatilityfoundation / volatility

  View on GitHub
  An advanced memory forensics framework
  ☆7,963May 16, 2025Updated 8 months ago
• Gallopsled / pwntools

  View on GitHub
  CTF framework and exploit development library
  ☆13,250Jan 23, 2026Updated 3 weeks ago
• danielmiessler / SecLists

  View on GitHub
  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …
  ☆68,783Updated this week
• fortra / impacket

  View on GitHub
  Impacket is a collection of Python classes for working with network protocols.
  ☆15,433Feb 5, 2026Updated last week
• gentilkiwi / mimikatz

  View on GitHub
  A little tool to play with Windows security
  ☆21,253May 11, 2025Updated 9 months ago
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,715Jan 12, 2026Updated last month
• SpecterOps / BloodHound-Legacy

  View on GitHub
  Six Degrees of Domain Admin
  ☆10,537Aug 1, 2025Updated 6 months ago
• cuckoosandbox / cuckoo

  View on GitHub
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆5,908May 3, 2022Updated 3 years ago
• OTRF / ThreatHunter-Playbook

  View on GitHub
  A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…
  ☆4,475Jan 12, 2026Updated last month
• samratashok / nishang

  View on GitHub
  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
  ☆9,740Apr 25, 2024Updated last year
• hslatman / awesome-threat-intelligence

  View on GitHub
  A curated list of Awesome Threat Intelligence resources
  ☆9,741Jan 19, 2026Updated 3 weeks ago
• NextronSystems / APTSimulator

  View on GitHub
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,710Sep 23, 2025Updated 4 months ago
• RPISEC / MBE

  View on GitHub
  Course materials for Modern Binary Exploitation by RPISEC
  ☆5,916Dec 9, 2021Updated 4 years ago
• SigmaHQ / sigma

  View on GitHub
  Main Sigma Rule Repository
  ☆10,109Updated this week
• meirwah / awesome-incident-response

  View on GitHub
  A curated list of tools for incident response
  ☆8,808Jul 18, 2024Updated last year
• LOLBAS-Project / LOLBAS

  View on GitHub
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆8,311Dec 6, 2025Updated 2 months ago
• MISP / MISP

  View on GitHub
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,123Updated this week
• VirusTotal / yara

  View on GitHub
  The pattern matching swiss knife
  ☆9,408Updated this week
• bluscreenofjeff / Red-Team-Infrastructure-Wiki

  View on GitHub
  Wiki to collect Red Team infrastructure hardening resources
  ☆4,440Oct 1, 2025Updated 4 months ago
• infosecn1nja / Red-Teaming-Toolkit

  View on GitHub
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆10,115Sep 29, 2025Updated 4 months ago
• mitre / caldera

  View on GitHub
  Automated Adversary Emulation Platform
  ☆6,733Updated this week
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆5,813Feb 5, 2026Updated last week
• Neo23x0 / yarGen

  View on GitHub
  yarGen is a generator for YARA rules
  ☆1,774Jan 10, 2026Updated last month
• InQuest / awesome-yara

  View on GitHub
  A curated list of awesome YARA rules, tools, and people.
  ☆4,136Mar 26, 2025Updated 10 months ago