Alternatives and similar repositories for malware_monitor:

Users that are interested in malware_monitor are comparing it to the libraries listed below

• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 7 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• coldshell / IDA-appcall
  ☆13Updated 7 years ago
• sam-b / win-driver-tools
  A couple of little tools I've made for working with Windows Drivers
  ☆15Updated 9 years ago
• int0 / ltmdm64_poc
  ☆28Updated 7 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• jbremer / godware
  Short for Good Ware; it assists Reverse Engineers in the analysis of Windows Malware.
  ☆24Updated 12 years ago
• tandasat / CVE-2014-0816
  CVE-2014-0816
  ☆25Updated 8 years ago
• cysinfo / Malpimp
  Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook t…
  ☆8Updated 8 years ago
• JeremyFetiveau / Exploits
  Old exploits and code for my self-referencing PML4 technique (2014)
  ☆31Updated 9 years ago
• sin5678 / wow64hook
  wow64 syscall filter
  ☆13Updated 10 years ago
• codingtest / EMET
  reversed emet tool
  ☆24Updated 12 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• wirepair / IDAPinLogger
  Logs instruction hits to a file which can be fed into IDA Pro to highlight which instructions were called.
  ☆41Updated 11 years ago
• almost-real / IDBG
  Allows you to add breakpoints from IDA (from the graph/text view) to WinDbg easily
  ☆14Updated 6 years ago
• MortenSchenk / tagWnd-Hardening-Bypass
  Bypass for the hardening against usage of tagWnd as a kernel read/write primitive
  ☆29Updated 8 years ago
• Mirraz / regparser
  Windows registry files interactive viewer
  ☆9Updated 7 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 8 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆18Updated 6 years ago
• sciencemanx / x86-analysis
  Static analysis tools for x86 assembly
  ☆13Updated 8 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 9 years ago
• after1990s / InjectSolution
  ☆12Updated 10 years ago
• k0keoyo / try_exploit
  ☆10Updated 7 years ago
• r41p41 / BotKiller
  find and kill injectedThreads from memory
  ☆10Updated 9 years ago
• dgros / Malware_Analyzer
  Framework complet d'analyse de malware
  ☆12Updated 9 years ago
• sam-b / PSOD
  A simple Windows driver which crashes the system and turns the BSOD pink
  ☆19Updated 8 years ago
• BinSigma / BinClone
  ☆27Updated 3 years ago
• exp-sky / MemoryProtection
  微软7月布丁增加内存延迟释放机制
  ☆11Updated 10 years ago
• nihilus / WhatAPIs
  IDA WhatAPIs PlugIn
  ☆7Updated 9 years ago
• MortenSchenk / ACL_Edit
  Assembly code to use for Windows kernel shellcode to edit winlogon.exe ACL
  ☆13Updated 8 years ago