Alternatives and similar repositories for Malware-analysis-and-Reverse-engineering

Users that are interested in Malware-analysis-and-Reverse-engineering are comparing it to the libraries listed below

• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆730Updated 2 months ago
• hasherezade / tiny_tracer
  A Pin Tool for tracing API calls etc
  ☆1,424Updated 2 weeks ago
• mandiant / speakeasy
  Windows kernel and user mode emulation.
  ☆1,643Updated last month
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆360Updated last month
• ethereal-vx / Antivirus-Artifacts
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆737Updated 3 years ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆490Updated 2 months ago
• 0x4143 / malware-gems
  A not so awesome list of malware gems for aspiring malware analysts
  ☆805Updated 2 years ago
• jthuraisamy / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆1,870Updated 2 years ago
• hasherezade / pe-bear-releases
  PE-bear (builds only)
  ☆778Updated last year
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆605Updated last year
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆441Updated last month
• RedTeamOperations / Advanced-Process-Injection-Workshop
  ☆750Updated last year
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆802Updated last year
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,172Updated this week
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆407Updated 10 months ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆581Updated last month
• matthieu-hackwitharts / Win32_Offensive_Cheatsheet
  Win32 and Kernel abusing techniques for pentesters
  ☆950Updated last year
• Velocidex / WinPmem
  The multi-platform memory acquisition tool.
  ☆790Updated 5 months ago
• fareedfauzi / Flare-On-Challenges
  This repository aims to compile all Flare-On challenge binaries and write-ups. Update: 2014 -2024.
  ☆319Updated last month
• wavestone-cdt / EDRSandblast
  ☆1,646Updated 8 months ago
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆578Updated last year
• theevilbit / injection
  ☆814Updated 5 years ago
• binref / refinery
  High Octane Triage Analysis
  ☆725Updated last week
• jstrosch / learning-reverse-engineering
  This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.
  ☆558Updated last year
• vxunderground / VXUG-Papers
  Research code & papers from members of vx-underground.
  ☆1,233Updated 3 years ago
• vxunderground / VX-API
  Collection of various malicious functionality to aid in malware development
  ☆1,652Updated last year
• 3xpl01tc0d3r / ProcessInjection
  This program is designed to demonstrate various process injection techniques
  ☆1,144Updated last year
• mrphrazer / obfuscation_detection
  Binary Ninja plugin to identify obfuscated code and other interesting code constructs
  ☆624Updated 2 months ago
• jstrosch / learning-malware-analysis
  This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be…
  ☆638Updated 10 months ago
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,137Updated last week