Alternatives and similar repositories for ELFieScanner:

Users that are interested in ELFieScanner are comparing it to the libraries listed below

• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆46Updated last week
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆116Updated 9 months ago
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆58Updated 4 months ago
• t0-retooling / defender-recon24
  ☆52Updated 6 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆115Updated last year
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆52Updated 4 months ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• wetw0rk / wetw0rk.github.io
  ☆18Updated last month
• OtterHacker / Hooker
  ☆105Updated 6 months ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 7 months ago
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆36Updated 2 months ago
• thiagopeixoto / winsos-poc
  A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.
  ☆111Updated last year
• exploits-forsale / 24h2-nt-exploit
  Exploit targeting NT kernel in 24H2 Windows Insider Preview
  ☆129Updated last year
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆49Updated 7 months ago
• struppigel / hedgehog-tools
  ☆114Updated this week
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆35Updated 3 weeks ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆36Updated 8 months ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated 11 months ago
• zerozenxlabs / CVE-2023-36424
  Windows Kernel Pool (clfs.sys) Corruption Privilege Escalation
  ☆127Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆67Updated 3 months ago
• Slowerzs / KeyJumper
  ☆45Updated last month
• patrickmatula / Windows-Internals-Learning-Resources
  ☆100Updated 5 months ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆17Updated last week
• antonioCoco / infosec-talks
  ☆48Updated last year
• Idov31 / NidhoggScript
  NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
  ☆46Updated last year
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆42Updated last month
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆103Updated 3 weeks ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆92Updated last week
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆141Updated 9 months ago