Alternatives and similar repositories for yaradbg-backend:

Users that are interested in yaradbg-backend are comparing it to the libraries listed below

• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• rbmm / Services
  ☆18Updated 3 months ago
• MMitsuha / Tajimari
  the Open Source and Pure C++ Packer for eXecutables
  ☆19Updated 2 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆18Updated last year
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆19Updated 2 months ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated 9 months ago
• yoavshah / ImportlessApi
  ☆18Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• splexas / TrampHooker
  A mechanism that trampoline hooks functions in x86/x64 systems.
  ☆22Updated 6 months ago
• yo-yo-yo-jbo / anti_debugging_intro
  ☆24Updated 2 years ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆22Updated 9 months ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆20Updated this week
• Meckazin / HidingFromETW
  PoC for detecting and evading ETW detection of .Net Assembly.Load
  ☆20Updated 4 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆43Updated last year
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated 4 months ago
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆34Updated this week
• rbmm / PPL
  run process as PPL Antimalware
  ☆10Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• anyrun / blog-scripts
  ☆30Updated 4 months ago
• Yaxser / Itaskhandler
  Implementation of ITaskHandler in C++
  ☆13Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆31Updated last year
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated 11 months ago
• rhotav / PT_LOAD-Injector
  An injector that use PT_LOAD technique
  ☆12Updated 2 years ago
• rbmm / DirectSysCall
  ☆12Updated last year
• AsuNa-jp / HotkeybasedKeyloggerDetector
  ☆17Updated last month
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year