Alternatives and similar repositories for MBRFilter

Users that are interested in MBRFilter are comparing it to the libraries listed below

• ionescu007 / SpecuCheck
  SpecuCheck is a Windows utility for checking the state of the software mitigations and hardware against CVE-2017-5754 (Meltdown), CVE-20…
  ☆584Updated 6 years ago
• bartblaze / Disable-Intel-AMT
  Tool to disable Intel AMT on Windows
  ☆146Updated 8 years ago
• CrowdStrike / Tortilla
  ☆299Updated 9 years ago
• williballenthin / shellbags
  Cross-platform, open-source shellbag parser
  ☆160Updated 2 years ago
• godaddy / procfilter
  A YARA-integrated process denial framework for Windows
  ☆397Updated 5 years ago
• Cisco-Talos / TeslaDecrypt
  Decryption Tool
  ☆147Updated 6 years ago
• felixweyne / ProcessSpawnControl
  Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launche…
  ☆264Updated 3 years ago
• endgameinc / Py2ExeDecompiler
  ☆166Updated 8 years ago
• hfiref0x / ZeroAccess
  ZeroAccess v3 toolkit
  ☆166Updated 8 years ago
• armadito / armadito-av
  Armadito antivirus main repository
  ☆213Updated 8 years ago
• NuclearPhoenixx / fake-sandbox
  👁‍🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.
  ☆144Updated 6 months ago
• AlicanAkyol / sems
  Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
  ☆463Updated 7 years ago
• JLospinoso / beamgun
  A rogue-USB-device defeat program for Windows.
  ☆189Updated 3 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆274Updated 7 years ago
• eset / malware-research
  Code written as part of our various malware investigations
  ☆407Updated last month
• MalwareTech / TrickBot-Toolkit
  A collection of tools for dealing with TrickBot
  ☆202Updated 8 years ago
• mattifestation / DeviceGuardBypassMitigationRules
  A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses
  ☆114Updated 8 years ago
• jschicht / RawCopy
  Commandline low level file extractor for NTFS
  ☆307Updated 6 years ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆514Updated last year
• BreakingMalwareResearch / eleven
  Elevation by environment variable expansion
  ☆65Updated 9 years ago
• ShaneK2 / inVtero.net
  inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…
  ☆291Updated 2 years ago
• BreakingMalwareResearch / atom-bombing
  Brand New Code Injection for Windows
  ☆739Updated 5 years ago
• gellin / TeamViewer_Permissions_Hook_V1
  A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissio…
  ☆310Updated 8 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆146Updated 11 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆296Updated last year
• hasherezade / malware_analysis
  Various snippets created during malware analysis
  ☆461Updated 3 months ago
• AlphaDelta / Secure-Desktop
  Anti-keylogger/anti-rat application for Windows
  ☆250Updated 4 years ago
• YJesus / AntiRansom
  Fighting against ransomware using honeypots
  ☆177Updated 4 years ago
• nsacyber / Windows-Event-Log-Messages
  Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber
  ☆406Updated 3 years ago
• Invoke-IR / ForensicPosters
  ☆453Updated last year