Alternatives and similar repositories for EhTrace:

Users that are interested in EhTrace are comparing it to the libraries listed below

• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆150Updated 7 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 7 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• cseagle / fREedom
  capstone based disassembler for extracting to binnavi
  ☆227Updated 8 years ago
• IOActive / I-know-where-your-page-lives
  I Know Where Your Page Lives: Derandomizing the latest Windows 10 Kernel - ZeroNights 2016
  ☆163Updated 8 years ago
• Cisco-Talos / ROPMEMU
  ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
  ☆284Updated 8 years ago
• lifting-bits / codereason
  Semantic Binary Code Analysis Framework
  ☆125Updated 9 years ago
• mokhdzanifaeq / pyflirt
  map file generator for intel x86 binary based on flirt signature
  ☆84Updated 8 years ago
• kokjo / universalrop
  Small tool for generating ropchains using unicorn and z3
  ☆197Updated 7 years ago
• AirbusCyber / grap
  grap: define and match graph patterns within binaries
  ☆170Updated 4 years ago
• jeffball55 / rop_compiler
  An open source, multi-architecture ROP compiler written in python
  ☆161Updated 7 years ago
• carlosgprado / JARVIS
  "Just Another ReVersIng Suite" or whatever other bullshit you can think of
  ☆150Updated last year
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆430Updated 6 years ago
• sogeti-esec-lab / LKD
  Local Kernel Debugger (LKD) is a python wrapper around dbgengine.dll
  ☆92Updated 8 years ago
• mandiant / Reversing
  ☆109Updated 7 years ago
• codypierce / hackers-grep
  hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
  ☆169Updated 6 years ago
• pinkflawd / r2graphity
  Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators
  ☆86Updated 7 years ago
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• danigargu / IDAtropy
  IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…
  ☆138Updated 3 years ago
• ivildeed / vmw_vmx_overloader
  Loading unsigned code into kernel in Windows 10 (64) with help of VMware Workstation Pro/Player design flaw
  ☆135Updated 7 years ago
• PyAna / PyAna
  PyAna - Analyzing the Windows shellcode
  ☆247Updated 9 years ago
• BreakingMalware / Selfie
  A Tool to Unpack Self-Modifying Code using DynamoRIO
  ☆141Updated 7 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆137Updated 8 years ago
• 0xPhoeniX / MazeWalker
  Toolkit for enriching and speeding up static malware analysis
  ☆167Updated 3 years ago
• ixty / xarch_shellcode
  Cross Architecture Shellcode in C
  ☆200Updated 8 years ago
• ricardojrdez / anti-analysis-tricks
  Bunch of techniques potentially used by malware to detect analysis environments
  ☆158Updated 8 years ago
• quangnh89 / OllyCapstone
  This is a plugin for OllyDbg 1.10 to replace the old disasm engine by Capstone disassembly/disassembler framework.
  ☆80Updated 10 years ago
• NorthBit / bulletin-scraper
  Download all of Microsoft's security updates and symbols
  ☆42Updated 8 years ago
• MortenSchenk / BHUSA2017
  Content from presentation at BHUSA 2017
  ☆180Updated 7 years ago