Alternatives and similar repositories for Redemption-Anti-Ransomware

Users that are interested in Redemption-Anti-Ransomware are comparing it to the libraries listed below

• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆65Updated 7 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆55Updated 3 weeks ago
• loneicewolf / flame-sourcecode
  UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.
  ☆19Updated last year
• cdong1012 / IDAPython-Malware-Scripts
  ☆74Updated last year
• aelth / dementia-forensics
  Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on M…
  ☆12Updated 5 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆78Updated 10 years ago
• hasherezade / pe_utils
  A set of small utilities, helpers for PIN tracers
  ☆32Updated last year
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• packing-box / dataset-packed-elf
  Dataset of packed ELF samples
  ☆19Updated 2 years ago
• DanielAvinoam / TheSubZeroProject
  A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
  ☆73Updated 4 years ago
• sysopfb / Unpackers
  My collection of unpackers for malware packers/crypters
  ☆28Updated 8 years ago
• hasherezade / decryptors_archive
  Archive of ransomware decryptors
  ☆31Updated 7 years ago
• OxMarco / darwinian-virus
  Project aimed at creating a malware able to evolve and adapt to the various host machines through metamorphic modifications, spontaneous …
  ☆44Updated 7 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆26Updated 3 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆20Updated 7 years ago
• hfiref0x / MpEnum
  Enumerate Windows Defender threat families and dump their names according category
  ☆91Updated 6 years ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆61Updated last year
• NexusFuzzy / NanoDump
  Tool to decrypt the configuration of NanoCore and dump all used plugins
  ☆11Updated 4 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆39Updated 5 years ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆93Updated 6 years ago
• NextSecurity / Gozi-MBR-rootkit
  Gozi-MBR-rootkit Bootkit Modified
  ☆70Updated 8 years ago
• 0xd3xt3r / awesome-windows-rootkits
  Collection of windows rootkits
  ☆26Updated 5 years ago
• d35ha / RunPE
  An example of PE hollowing injection technique
  ☆24Updated 6 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆69Updated last year
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆52Updated 6 years ago
• reversinghub / hide-and-seek
  PoC for hiding processes from Windows Task Manager by manipulating the graphic interface
  ☆46Updated 5 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆62Updated 4 years ago
• KbaHaxor / Ammyy-v3
  Ammyy v3 Source Code leak , with ❤️ <3
  ☆40Updated 8 years ago
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆27Updated 3 years ago
• AzAgarampur / byeintegrity3-uac
  Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler
  ☆29Updated 4 years ago