Alternatives and similar repositories for 4n4lDetector

Users that are interested in 4n4lDetector are comparing it to the libraries listed below

• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆212Updated 2 years ago
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆36Updated last month
• struppigel / hedgehog-tools
  ☆114Updated last month
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated 2 years ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆180Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 10 months ago
• ArtemBaranov / WindowsRootkitsGuide
  ☆68Updated 4 months ago
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆252Updated last year
• buzzer-re / Shinigami
  A dynamic unpacking tool
  ☆136Updated last year
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆106Updated last month
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆45Updated 11 months ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated 2 years ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆111Updated last month
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆41Updated 2 years ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆144Updated 10 months ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆165Updated 2 months ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆41Updated 8 months ago
• PhrozenIO / DLest
  Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
  ☆222Updated 11 months ago
• struppigel / PortexAnalyzerGUI
  Graphical interface for PortEx, a Portable Executable and Malware Analysis Library
  ☆137Updated 10 months ago
• secana / PeNet-Analyzer
  Analyzers for Portable Executable anomalies and other malware behavior.
  ☆32Updated 11 months ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆124Updated last year
• nullsection / Discord-DLL-Hijacking
  This is a simple example of DLL hijacking enabling proxy execution.
  ☆66Updated 2 years ago
• MzHmO / Parasite-Invoke
  Hide your P/Invoke signatures through other people's signed assemblies
  ☆211Updated last year
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆113Updated 2 years ago
• MalGamy / YARA_Rules
  ☆66Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆196Updated 3 months ago
• dodo-sec / Malware-Analysis
  ☆136Updated 2 years ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆131Updated 9 months ago