Alternatives and similar repositories for batch_deobfuscator

Users that are interested in batch_deobfuscator are comparing it to the libraries listed below

• d4rksystem / VBoxCloak
  A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …
  ☆294Updated 2 years ago
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆180Updated 3 years ago
• d4rksystem / VMwareCloak
  A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…
  ☆351Updated 3 months ago
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆252Updated last year
• nazywam / AutoIt-Ripper
  Extract AutoIt scripts embedded in PE binaries
  ☆184Updated 10 months ago
• aaaddress1 / Skrull
  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…
  ☆457Updated 3 years ago
• repnz / shellcode2exe
  Batch script to compile a binary shellcode blob into an exe file
  ☆85Updated 5 years ago
• Karneades / malware-persistence
  Collection of malware persistence and hunting information. Be a persistent persistence hunter!
  ☆176Updated 3 months ago
• dalvarezperez / CreateFile_based_rootkit
  ☆135Updated 2 months ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆137Updated 3 years ago
• knez / defender-dump
  Dump quarantined files from Windows Defender
  ☆63Updated 3 years ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆730Updated 2 months ago
• mandiant / dncil
  The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
  ☆165Updated last month
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆64Updated 7 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆78Updated 4 years ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆162Updated last month
• hfiref0x / WDExtract
  Extract Windows Defender database from vdm files and unpack it
  ☆440Updated 5 years ago
• RedSection / OffensivePH
  OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
  ☆332Updated 3 years ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆188Updated last year
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆50Updated last year
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆221Updated 2 years ago
• KooroshRZ / Evader
  Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)
  ☆104Updated 4 years ago
• SkyEmie / batch-obfuscator
  Easy way to obfuscuate batch files (Windows)
  ☆147Updated 2 years ago
• hasherezade / module_overloading
  A more stealthy variant of "DLL hollowing"
  ☆348Updated last year
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• albertzsigovits / malware-writeups
  Personal research and publication on malware families
  ☆139Updated 4 months ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• NtRaiseHardError / Antimalware-Research
  Research on Anti-malware and other related security solutions
  ☆259Updated 4 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆205Updated 2 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆115Updated last year