Alternatives and similar repositories for windows-desktop

Users that are interested in windows-desktop are comparing it to the libraries listed below

• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆21Updated 6 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆38Updated 5 years ago
• nccgroup / WindowsJobLock
  Windows Process Lockdown Tool using Job Objects
  ☆70Updated 12 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆32Updated 5 years ago
• zodiacon / NativeApps
  Demos and presentation from SECArmy Village Grayhat 2020
  ☆37Updated 2 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 7 years ago
• sorasuzukidev / ethereum-grid-bot
  🔵 ethereum grid trading bot
  ☆36Updated 3 months ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• nccgroup / WindowsPatchDetector
  Experimental Windows .text section Patch Detector
  ☆22Updated 11 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated 8 months ago
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆50Updated 3 years ago
• mandiant / win10_auto
  ☆24Updated 6 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆16Updated 2 years ago
• deroko / activationcontexthook
  ☆34Updated 8 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last year
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆45Updated 4 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• connormcgarr / Presentations
  ☆30Updated 5 months ago
• JLospinoso / doh
  A Privacy-Conscious, DNS-over-HTTP-Enabled, Blacklist-Incorporating SOCKS5 Proxy
  ☆30Updated 6 years ago
• zodiacon / Blog
  Blog posts
  ☆29Updated 5 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆30Updated 7 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated 2 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 4 years ago
• hasherezade / tag_converter
  ☆23Updated 5 years ago
• hotnops / RemoteDebugView
  A DLL that serves OutputDebugString content over a TCP connection
  ☆35Updated 4 years ago
• 649 / EquationDrug
  The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…
  ☆26Updated 8 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆58Updated 6 months ago