Alternatives and similar repositories for maze-deobfuscation

Users that are interested in maze-deobfuscation are comparing it to the libraries listed below

• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆92Updated 6 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆37Updated 6 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆42Updated 6 years ago
• piotrflorczyk / cve-2018-8174_analysis
  Analysis of VBS exploit CVE-2018-8174
  ☆31Updated 7 years ago
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆37Updated 7 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 6 years ago
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆32Updated 7 years ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆26Updated 6 years ago
• RceNinja / Re-Scripts
  ☆34Updated 4 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆124Updated 5 years ago
• aaaddress1 / vtMal
  Malware Sandbox Emulation in Python @ HITCON 2018
  ☆46Updated 7 years ago
• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 3 years ago
• williballenthin / idawilli
  IDA Pro resources, scripts, and configurations
  ☆119Updated last month
• eleemosynator / writeups
  Write-ups for crackmes and CTF challenges
  ☆53Updated 3 years ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆52Updated 4 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• cylance / winapi-deobfuscation
  Towards Generic Deobfuscation of Windows API Calls
  ☆50Updated 6 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆44Updated 2 years ago
• MortenSchenk / RtlCaptureContext-CFG-Bypass
  Internet Explorer Exploit with CFG bypass for Windows 10
  ☆57Updated 8 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆110Updated 5 years ago
• IOActive / FuzzNDIS
  A Fuzzer for Windows NDIS Drivers OID Handlers
  ☆95Updated 4 years ago
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆29Updated 6 months ago
• Winbagility / Winbagility
  [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;
  ☆76Updated 6 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆66Updated 3 years ago
• hugsy / hevd
  Public repository for HEVD exploits
  ☆19Updated 7 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆98Updated 3 years ago
• shamrockhoax / mazedecoder
  ☆28Updated 5 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆86Updated 3 years ago