Alternatives and similar repositories for EhTrace:

Users that are interested in EhTrace are comparing it to the libraries listed below

• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 6 years ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆148Updated 7 years ago
• cseagle / fREedom
  capstone based disassembler for extracting to binnavi
  ☆227Updated 8 years ago
• nirizr / rematch
  REmatch, a complete binary diffing framework that is free and strives to be open source and community driven.
  ☆154Updated 6 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆170Updated 3 years ago
• pinkflawd / r2graphity
  Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators
  ☆86Updated 7 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆162Updated 8 years ago
• MagnetForensics / SwishDbgExt
  Incident Response & Digital Forensics Debugging Extension
  ☆373Updated 6 years ago
• ricardojrdez / anti-analysis-tricks
  Bunch of techniques potentially used by malware to detect analysis environments
  ☆156Updated 8 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆125Updated 9 years ago
• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆285Updated 8 years ago
• PyAna / PyAna
  PyAna - Analyzing the Windows shellcode
  ☆247Updated 8 years ago
• mothran / unicorn-decoder
  Simple shellcode decoder using unicorn-engine
  ☆98Updated 9 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 7 years ago
• mandiant / Reversing
  ☆109Updated 7 years ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆425Updated 6 years ago
• sogeti-esec-lab / LKD
  Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
  ☆92Updated 8 years ago
• 0xPhoeniX / MazeWalker
  Toolkit for enriching and speeding up static malware analysis
  ☆167Updated 2 years ago
• mokhdzanifaeq / pyflirt
  map file generator for intel x86 binary based on flirt signature
  ☆83Updated 8 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• quangnh89 / OllyCapstone
  This is a plugin for OllyDbg 1.10 to replace the old disasm engine by Capstone disassembly/disassembler framework.
  ☆80Updated 9 years ago
• codypierce / hackers-grep
  hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
  ☆169Updated 6 years ago
• MortenSchenk / BHUSA2017
  Content from presentation at BHUSA 2017
  ☆180Updated 7 years ago
• rwfpl / rewolf-gogogadget
  kernel exploitation helper class
  ☆75Updated 8 years ago
• mandiant / flare-qdb
  Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
  ☆161Updated last year