Alternatives and similar repositories for SPTH:

Users that are interested in SPTH are comparing it to the libraries listed below

• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆142Updated last year
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆387Updated 3 weeks ago
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆180Updated 3 years ago
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• OALabs / research
  Research notes
  ☆122Updated 4 months ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆114Updated last year
• securityjoes / AskJOE
  This is a Ghidra script that calls OPENAI to give meaning to decompiled functions
  ☆123Updated 8 months ago
• shogunlab / building-c2-implants-in-cpp
  The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).
  ☆227Updated 3 months ago
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆122Updated 8 months ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆135Updated 3 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆128Updated last year
• Sh3lldor / PVT
  PCAP visualization tool
  ☆103Updated last year
• struppigel / hedgehog-tools
  ☆113Updated last month
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆326Updated 9 months ago
• Idov31 / Venom
  Venom is a library that meant to perform evasive communication using stolen browser socket
  ☆379Updated last year
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆158Updated last week
• pan-unit42 / dotnetfile
  ☆105Updated last year
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆85Updated 3 months ago
• advanced-threat-research / GhidraScripts
  Scripts to run within Ghidra, maintained by the Trellix ARC team
  ☆97Updated 3 weeks ago
• 0xpat / 0xpat.github.io
  0xpat blog
  ☆102Updated 3 years ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆142Updated 8 months ago
• therealdreg / masm32-kernel-programming
  masm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)
  ☆119Updated last year
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆458Updated last month
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆252Updated last year
• SPTHvx / ezines
  ☆14Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆66Updated 2 months ago
• ayoubfaouzi / windows-exploitation
  My notes while studying Windows exploitation
  ☆187Updated last year
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated last year
• MythicAgents / poseidon
  Poseidon is a Golang agent targeting Linux and macOS
  ☆142Updated 2 weeks ago
• lasq88 / LearingMaterials
  Different learning materials
  ☆225Updated 3 weeks ago