Alternatives and similar repositories for guilty-as-yara

Users that are interested in guilty-as-yara are comparing it to the libraries listed below

• Octoberfest7 / ThreadCPUAssignment_POC
  A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread
  ☆30Updated last month
• SpiralBL0CK / CVE-2024-40431-CVE-2022-25479-EOP-CHAIN
  CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK)
  ☆45Updated last year
• ig-labs / defender-mpengine-fuzzing
  Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine
  ☆37Updated 3 months ago
• 3sjay / sploits
  some sploits
  ☆18Updated last year
• RomanRybachek / CVE-2024-20698
  Analysis of the vulnerability
  ☆51Updated last year
• MrAle98 / ATDCM64a-LPE
  ☆21Updated 10 months ago
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• theabysslabs / CVE-2022-21881
  POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox
  ☆21Updated 3 years ago
• zeze-zeze / HITCON-2023-Demo-CVE-2023-20562
  ☆61Updated 2 years ago
• SpecterOps / ipc-research
  Inter-Process Communication Mechanisms
  ☆28Updated 5 years ago
• watchtowrlabs / CVE-2025-0282
  Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282)
  ☆29Updated 10 months ago
• X-C3LL / memdlopen-lib
  ☆12Updated 2 years ago
• HaydoW / NerfDefender
  BOF and C++ implementation of the Windows Defender sandboxing technique described by Elastic Security Labs/Gabriel Landau.
  ☆24Updated 2 years ago
• uf0o / Counterfeit_Object_Oriented_Programming_COOP
  ☆14Updated last year
• wolfcod / beacondbg
  Beacon Debugger
  ☆55Updated last year
• EvanMcBroom / fuse-loader
  Load a dynamic library from memory using a fuse mount
  ☆31Updated 2 years ago
• EgeBalci / syscall_api
  ☆38Updated 2 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆30Updated 2 years ago
• Wa1nut4 / CVE-2024-26230
  LPE of CVE-2024-26230
  ☆24Updated last year
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆12Updated 7 months ago
• xct / CVE-2024-27460
  Plantronics Desktop Hub LPE
  ☆37Updated last year
• exploits-forsale / CVE-2024-26218
  Proof-of-Concept for CVE-2024-26218
  ☆54Updated last year
• t0-retooling / defender-recon24
  ☆58Updated last year
• synacktiv / windows_kernel_shadow_stack
  Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
  ☆53Updated 5 months ago
• listinvest / undonut
  Unpacker for donut shellcode
  ☆17Updated 5 years ago
• UmaRex01 / HookSentry
  Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.
  ☆36Updated 6 months ago
• OtterHacker / CoffLoader
  ☆58Updated 2 years ago
• Signal-Labs / Hotpatching_PoC
  ☆22Updated 2 years ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆34Updated 2 years ago
• MMitsuha / Tajimari
  the Open Source and Pure C++ Packer for eXecutables
  ☆21Updated 2 years ago