Alternatives and similar repositories for research:

Users that are interested in research are comparing it to the libraries listed below

• OALabs / Lab-Notes
  Code snips and notes
  ☆134Updated 2 years ago
• pan-unit42 / dotnetfile
  ☆104Updated last year
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆345Updated this week
• OALabs / hashdb-ida
  HashDB API hash lookup plugin for IDA Pro
  ☆303Updated 4 months ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆78Updated 4 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆142Updated last year
• struppigel / hedgehog-tools
  ☆111Updated this week
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• AllsafeCyberSecurity / ghidra_scripts
  Ghidra scripts for malware analysis
  ☆91Updated last year
• nullteilerfrei / reversing-class
  LERN GHIDRA
  ☆89Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆127Updated last year
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆326Updated 8 months ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆487Updated last week
• mandiant / dncil
  The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
  ☆160Updated last week
• mandiant / xrefer
  FLARE Team's Binary Navigator
  ☆222Updated last month
• ashemery / malware4edu
  Malware Samples that could be used for teaching students about malware analysis.
  ☆52Updated 10 months ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆115Updated last year
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆134Updated 7 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated last year
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆154Updated last month
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆93Updated 8 months ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆89Updated last year
• NozomiNetworks / upx-recovery-tool
  ☆100Updated 2 years ago
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆369Updated 3 months ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated last year
• alexey-kleymenov / reverse_engineering_tools
  Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.
  ☆101Updated 2 years ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆178Updated last year
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆121Updated 7 months ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆100Updated this week
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆118Updated last year