Alternatives and similar repositories for MalwareAnalysis

Users that are interested in MalwareAnalysis are comparing it to the libraries listed below

• oldboy21 / CGPL
  Yet, Another Packer/Loader
  ☆25Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• cocomelonc / 2022-04-20-malware-pers-1
  Malware development: persistence - part 1: startup folder registry keys. C++ implementation
  ☆12Updated 3 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆20Updated last year
• rbmm / Services
  ☆18Updated 4 months ago
• CyberSecurityUP / SyscallHookDetector
  ☆17Updated 7 months ago
• 7eRoM / tutorials
  ☆16Updated 3 weeks ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 4 years ago
• yo-yo-yo-jbo / msf_shellcode_analysis
  ☆27Updated 2 years ago
• diljith369 / CSharp4Pentesters
  CSharp4Pentesters
  ☆12Updated 3 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated 6 months ago
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 3 years ago
• ricardojoserf / NativeNtdllRemap
  Remap ntdll.dll using only NTAPI functions with a suspended process
  ☆21Updated last month
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆24Updated 3 years ago
• matro7sh / havoc-gosecdump
  ☆18Updated 6 months ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated 8 months ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated 10 months ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆16Updated last year
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆27Updated 2 months ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆17Updated last year
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• xforcered / AdvSim.Cryptography
  Simple and sane cryptographic wrapper library.
  ☆27Updated 2 years ago
• indetectables-net / rats-library
  RATs library 2003 to present
  ☆14Updated last year
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• AmirHoseinTangsiriNET / EventLogSilencer
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆17Updated last year
• ricardojoserf / http-protocol-exfil
  Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)
  ☆23Updated 3 years ago
• dmcxblue / SharpHIBP
  A C# Tool to gather information about email breaches
  ☆14Updated last year