Alternatives and similar repositories for yaradbg-frontend:

Users that are interested in yaradbg-frontend are comparing it to the libraries listed below

• DissectMalware / yaradbg-backend
  ☆25Updated last year
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆36Updated 2 months ago
• FarghlyMal / Config-Extractors
  ☆27Updated 4 months ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆40Updated 7 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆47Updated 3 months ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆15Updated 3 months ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 7 months ago
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆35Updated 2 weeks ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆36Updated 7 months ago
• antonioCoco / infosec-talks
  ☆48Updated last year
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆43Updated last year
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• naacbin / CovenantDecryptor
  ☆20Updated last year
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆37Updated 2 years ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆55Updated 4 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• nullsection / SharpETW-Patch
  ☆22Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆50Updated 3 weeks ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 9 months ago
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆52Updated 3 months ago
• t0-retooling / defender-recon24
  ☆52Updated 6 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated 11 months ago
• hwvs / Invoke-GPTObfuscation
  Powershell implementation of a novel technique. Invoke-GPTObfuscation is a PowerShell Obfuscator that utilizes OpenAI (and other APIs) to…
  ☆49Updated last year
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆24Updated 2 weeks ago
• DebugPrivilege / OpenProject
  A practical resource on using open-source tools for Incident Response. This repo shares workflows, tool setups, and steps for responding …
  ☆28Updated 5 months ago