Alternatives and similar repositories for malwasm

Users that are interested in malwasm are comparing it to the libraries listed below

• PyAna / PyAna
  PyAna - Analyzing the Windows shellcode
  ☆248Updated 9 years ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆150Updated 7 years ago
• lukaszbb / apt-analysis
  ☆52Updated 10 years ago
• jjo-sec / idataco
  IDATACO IDA Pro Plugin
  ☆47Updated 9 years ago
• szimeus / evalyzer
  Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection
  ☆82Updated 8 years ago
• tinysec / vulnerability
  windows kernel vulnerability found by me
  ☆90Updated 7 years ago
• crackinglandia / pype32
  Yet another Python library to read and write PE/PE+ files.
  ☆78Updated 8 years ago
• malwaremusings / unpacker
  Automated malware unpacker
  ☆120Updated 9 years ago
• mandiant / flare-qdb
  Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
  ☆164Updated 2 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆88Updated 9 years ago
• pidydx / SMRT
  Sublime Malware Research Tool
  ☆66Updated 9 months ago
• tbarabosch / quincy
  Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"
  ☆69Updated 3 years ago
• mandiant / Reversing
  ☆109Updated 8 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆40Updated 2 years ago
• mothran / unicorn-decoder
  Simple shellcode decoder using unicorn-engine
  ☆99Updated 9 years ago
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆206Updated 11 years ago
• REhints / BlackHat_2015
  Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis
  ☆66Updated 9 years ago
• thezdi / abusing-silent-mitigations
  Understanding weaknesses within Internet Explorer's Isolated Heap and MemoryProtection
  ☆90Updated 10 years ago
• icewall / BinDiffFilter
  IDA Pro plugin making easier work on BinDiff results
  ☆80Updated 9 years ago
• WithSecureOpenSource / reflash
  ActionScript3 dynamic instrumentation tool
  ☆36Updated 8 years ago
• marcoramilli / malcontrol
  Malware Control Monitor
  ☆87Updated 10 years ago
• karttoon / shellbug
  Basic command line, text-based, shellcode debugger.
  ☆91Updated 8 years ago
• m4rco- / dorothy2
  A malware/botnet analysis framework written in Ruby.
  ☆196Updated last year
• pinkflawd / r2graphity
  Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators
  ☆86Updated 8 years ago
• mrpapercut / wscript
  ☆82Updated 6 years ago
• joxeankoret / cosa-nostra
  Cosa Nostra, a FOSS graph based malware clusterization toolkit.
  ☆231Updated last year
• davidoren / CuckooSploit
  An environment for comprehensive, automated analysis of web-based exploits, based on Cuckoo sandbox.
  ☆125Updated 10 years ago
• cuckoosandbox / cuckoomon
  DEPRECATED - replaced with "monitor"
  ☆122Updated 9 years ago
• Rootkitsmm-zz / Win10Pcap-Exploit
  Exploit Win10Pcap Driver to enable some Privilege in our process token ( local Privilege escalation )
  ☆61Updated 9 years ago
• arbor / reversing
  ASERT shared scripts for reversing
  ☆32Updated 7 years ago