Alternatives and similar repositories for BHEU22-ADFS

Users that are interested in BHEU22-ADFS are comparing it to the libraries listed below

• nasbench / SEDR-Internals
  Symantec EDR Internals
  ☆29Updated 4 years ago
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆50Updated 2 years ago
• SafeBreach-Labs / CoWTools
  Tools for analyzing Windows containers and break container's isolation
  ☆32Updated 3 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• X-Junior / Malware-IDAPython-Scripts
  ☆22Updated last year
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 3 years ago
• matthw / malware_analysis
  ☆18Updated last year
• ihack4falafel / Dell-Driver-EoP-CVE-2021-21551
  Dell Driver EoP (CVE-2021-21551)
  ☆32Updated 3 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 3 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆51Updated 3 years ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 3 years ago
• CERTCC / privesc
  Process Monitor filter for finding privilege escalation vulnerabilities on Windows
  ☆79Updated 4 years ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆17Updated 3 years ago
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆25Updated 4 months ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• c3rb3ru5d3d53c / peexports
  A Multi-Threaded PE Export Collection Utility
  ☆14Updated 2 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆16Updated 2 years ago
• paranoidninja / DotNetTracer
  C code to enable ETW tracing for Dotnet Assemblies
  ☆32Updated 3 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 5 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 3 years ago
• cyberark / malware-research
  ☆37Updated 9 months ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 5 years ago
• jaamaal / Embed
  Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…
  ☆22Updated 4 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆67Updated 3 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated 2 years ago