Alternatives and similar repositories for guilty-as-yara

Users that are interested in guilty-as-yara are comparing it to the libraries listed below

• GillLeonard / dragoon

  View on GitHub
  Dragoon
  ☆13Aug 8, 2017Updated 8 years ago
• dansdrivers / ndas4windows

  View on GitHub
  The Windows driver and device management program for NDAS devices such as the NetDISK.
  ☆16Jun 17, 2016Updated 9 years ago
• pard0p / LibWinHttp

  View on GitHub
  LibWinHttp is a simplified WinHTTP wrapper designed as a Crystal Palace shared library for implant development. Its primary purpose is to…
  ☆41Nov 4, 2025Updated 3 months ago
• tsarpaul / WinRpcTutorial

  View on GitHub
  A working version of this tutorial: https://docs.microsoft.com/en-us/windows/desktop/rpc/tutorial
  ☆16Jun 22, 2019Updated 6 years ago
• Titvt / x128dbg

  View on GitHub
  A plugin for x64dbg.
  ☆24Apr 25, 2021Updated 4 years ago
• wietze / bsides-ldn-2019

  View on GitHub
  Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA
  ☆22Jun 9, 2019Updated 6 years ago
• chainloaded / Kernel-HTTP-Client

  View on GitHub
  Minimalistic HTTP(S) client for the NT kernel
  ☆61Dec 1, 2025Updated 2 months ago
• zero2504 / Fairy-Law

  View on GitHub
  Fairy Law - Compromise or disable EDR security solutions
  ☆68Dec 1, 2025Updated 2 months ago
• seifreed / yaraast

  View on GitHub
  A powerful Python library and CLI tool for parsing, analyzing, and manipulating YARA rules through Abstract Syntax Tree (AST) representat…
  ☆51Dec 20, 2025Updated last month
• lum8rjack / caddy-c2

  View on GitHub
  Caddy v2 module to filter requests based on C2 profiles
  ☆46Apr 24, 2025Updated 9 months ago
• S3N4T0R-0X0 / Hunter

  View on GitHub
  Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…
  ☆91Apr 23, 2025Updated 9 months ago
• p0dalirius / bhopengraph

  View on GitHub
  A python library to create BloodHound OpenGraphs
  ☆52Feb 4, 2026Updated last week
• agustingianni / instrumentation

  View on GitHub
  Assorted pintools
  ☆30Mar 30, 2020Updated 5 years ago
• ricardojoserf / w11_shadow_copies

  View on GitHub
  Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11
  ☆81Jan 26, 2026Updated 3 weeks ago
• microsoft / pdb-rs

  View on GitHub
  Tools and documents for working with Microsoft PDB files, in Rust
  ☆55Updated this week
• daijiapei / SafeWall

  View on GitHub
  文件透明加密系统
  ☆41Oct 24, 2019Updated 6 years ago
• yo-yo-yo-jbo / commandline_spoofing

  View on GitHub
  Commandline spoofing on Windows
  ☆93Nov 25, 2025Updated 2 months ago
• Ltangjian / FireWall

  View on GitHub
  Based on the research of Windows network architecture and the core packet filtering firewall technology, using NDIS intermediate driver, …
  ☆31Feb 16, 2016Updated 10 years ago
• TheManticoreProject / winacl

  View on GitHub
  A cross platform Go library to work with Windows Security Descriptors
  ☆40Feb 7, 2026Updated last week
• JZF-JZF / My-Code

  View on GitHub
  C++ Code
  ☆11Aug 13, 2019Updated 6 years ago
• swharden / QRSSplus

  View on GitHub
  QRSS Plus: live QRSS grabbers from around the world
  ☆10Updated this week
• ber0glu / ProcessInjector

  View on GitHub
  C/C++ Windows Process Injector for Educational Purposes.
  ☆10Apr 2, 2021Updated 4 years ago
• R3DRUN3 / magnet

  View on GitHub
  Purple-team telemetry & simulation toolkit.
  ☆107Dec 16, 2025Updated last month
• lowleveldesign / lldext

  View on GitHub
  My commands and scripts extending WinDbg
  ☆45Mar 29, 2025Updated 10 months ago
• MahmoudZohdy / IAT-Obfuscation

  View on GitHub
  IAT-Obfuscation to make static analysis of executable harder.
  ☆44Sep 6, 2021Updated 4 years ago
• snovvcrash / RemoteRegSave

  View on GitHub
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆41Dec 8, 2023Updated 2 years ago
• sailay1996 / CVE-2025-53772

  View on GitHub
  poc for cve-2025-53772
  ☆46Dec 10, 2025Updated 2 months ago
• gatiella / Bug-Bounty-Search-Engine.io

  View on GitHub
  🔍 Bug Bounty Search Engine - Advanced reconnaissance toolkit with 64+ Google dork queries organized into 10 categories for security rese…
  ☆40Oct 6, 2025Updated 4 months ago
• can1357 / gengo

  View on GitHub
  Generate Go bindings for shared C libraries.
  ☆15Jul 13, 2024Updated last year
• wesmar / KernelResearchKit

  View on GitHub
  Windows 11 kernel research framework demonstrating DSE bypass on Windows 11 25H2 through boot-time execution. Loads unsigned drivers by s…
  ☆79Dec 22, 2025Updated last month
• JulianOzelRose / CSS-MultiHack-Internal

  View on GitHub
  An internal multihack for Counter-Strike: Source. Features include aimbot, triggerbot, auto bunnyhop, and anti-flash.
  ☆11Oct 26, 2025Updated 3 months ago
• lpcdma / easy_python2

  View on GitHub
  netease python2 inject hook
  ☆13Jan 8, 2025Updated last year
• 0xenia / remem

  View on GitHub
  remem is a C++ library designed for memory manipulation, function calling, and pattern scanning. It supports various calling conventions,…
  ☆10Aug 23, 2024Updated last year
• KiruyaMomochi / wsa-kernel-build

  View on GitHub
  Build WSA Kernel with Docker
  ☆17Oct 26, 2021Updated 4 years ago
• h6nt3r / xsser

  View on GitHub
  A Powerful XSS,RXSS,BXSS finding tool
  ☆30Oct 29, 2025Updated 3 months ago
• luzhlon / websocket-cpp

  View on GitHub
  websocket-protocol's implementation with multithread synchronization model in C++
  ☆17Jul 23, 2017Updated 8 years ago
• PaulFreund / MouseTrap

  View on GitHub
  Windows kernel driver for mouse input manipulation
  ☆40Jan 8, 2015Updated 11 years ago
• UEFI-code / WindowsDanger

  View on GitHub
  A REALLY Danger Windows Driver, Turn Any threads Ring0!
  ☆13Aug 11, 2025Updated 6 months ago
• Alien177 / WINAPI

  View on GitHub
  ☆11Jun 24, 2024Updated last year