Alternatives and similar repositories for Malware-Analysis-Reports

Users that are interested in Malware-Analysis-Reports are comparing it to the libraries listed below

• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 3 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆51Updated 3 years ago
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆25Updated 3 months ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Updated 3 years ago
• X-Junior / Malware-IDAPython-Scripts
  ☆22Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆115Updated 2 years ago
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆45Updated 3 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated 11 months ago
• CERTCC / privesc
  Process Monitor filter for finding privilege escalation vulnerabilities on Windows
  ☆79Updated 4 years ago
• jfmaes / talks-cons
  aggregated repo for all conferences and talks I am giving
  ☆17Updated 4 years ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆39Updated 4 years ago
• CronUp / EnAnalisis
  ☆44Updated this week
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆32Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆88Updated 3 years ago
• wsummerhill / Malware_Weaponization
  A curated list of tools and techniques written from experience in weaponization of malware
  ☆38Updated 2 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆41Updated 2 months ago
• jhackz / RTO-Implant
  Red Team Operator: Malware Development Essentials Course
  ☆100Updated 5 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆39Updated 4 years ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 5 years ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆52Updated 2 years ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆57Updated last year
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated 2 years ago
• rivitna / APT
  ☆14Updated 3 years ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆37Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year