Alternatives and similar repositories for SPTH

Users that are interested in SPTH are comparing it to the libraries listed below

• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆151Updated 6 months ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆131Updated 2 years ago
• redcode-labs / BMJ
  Code snippets for bare-metal malware development
  ☆98Updated 3 years ago
• am0nsec / vx
  Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.
  ☆192Updated 5 months ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆140Updated 3 years ago
• hardenedvault / bootkit-samples
  Bootkit sample for firmware attack
  ☆266Updated last year
• 0xpat / 0xpat.github.io
  0xpat blog
  ☆109Updated 4 years ago
• struppigel / hedgehog-tools
  ☆122Updated 3 weeks ago
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆136Updated 5 months ago
• ashemery / malware4edu
  Malware Samples that could be used for teaching students about malware analysis.
  ☆63Updated last year
• DissectMalware / pyOneNote
  A python library to parse OneNote (.one) files
  ☆141Updated last year
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆120Updated 2 years ago
• OALabs / research
  Research notes
  ☆130Updated last year
• SPTHvx / ezines
  ☆18Updated 2 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆70Updated 3 weeks ago
• lewiswigmore / virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆59Updated 4 months ago
• mandiant / dncil
  The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
  ☆170Updated last week
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆138Updated 2 weeks ago
• edygert / runsc
  runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…
  ☆38Updated 3 years ago
• intezer / Malware-Reverse-Engineering-for-Beginners
  This repository contains relevant samples and data related to "Malware Reverse Engineering for Beginners" articles.
  ☆63Updated 3 years ago
• pan-unit42 / dotnetfile
  ☆113Updated 4 months ago
• Sh3lldor / PVT
  PCAP visualization tool
  ☆104Updated 2 years ago
• ald3ns / copy-as-yara
  This is a little plugin to copy disassembly in a way that is usable in YARA rules!
  ☆48Updated 9 months ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆167Updated last year
• albertzsigovits / malware-study
  Resources for learning malware analysis and reverse engineering
  ☆144Updated last year
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated 2 years ago
• tsale / translated_conti_leaked_comms
  Leaked communication of Conti ransomware group from Jan 29, 2021 to Feb 27, 2022
  ☆133Updated 3 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆111Updated 4 years ago
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆88Updated last year