Alternatives and similar repositories for winnti-detector

Users that are interested in winnti-detector are comparing it to the libraries listed below

• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• theevilbit / vaccination
  ☆10Updated 7 years ago
• jacobsoo / DDE-Extractor
  This script is used for extracting DDE in docx and xlsx
  ☆12Updated 7 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆41Updated 6 years ago
• JR0driguezB / malware_analysis
  Various snippets created during malware analysis
  ☆22Updated 7 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 8 years ago
• itsreallynick / office-crackros
  Crack your macros like the math pros.
  ☆33Updated 8 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 8 years ago
• OsandaMalith / VBShellCode
  Making shellcode UD - https://osandamalith.com
  ☆24Updated 9 years ago
• darkquasar / WMI_Persistence
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆87Updated 7 years ago
• GelosSnake / MalwareResearchAPI
  API functions for Malware Research
  ☆35Updated 6 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• ring0x0 / honeydrops
  An automated collection and analysis of malware from my honeypots.
  ☆25Updated 7 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 8 years ago
• cryptogramfan / Malware-Analysis-Scripts
  Handy scripts to speed up malware analysis
  ☆35Updated last year
• dhondta / malicious-macro-tester
  CLI tool for testing Office documents with macros using MaliciousMacroBot
  ☆11Updated last year
• vallejocc / Malware-Analysis-scripts
  Scripts targeting specific families
  ☆13Updated 8 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆38Updated 8 years ago
• blacknbunny / peanalyzer
  Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit
  ☆100Updated 6 years ago
• Cyberclues / rtf_exploit_extractor
  Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents
  ☆23Updated 8 years ago
• 0xAnalyst / Sysmon
  Sysmon config for both Windows and Linux Devices. Windows one is a bit dated
  ☆56Updated last year
• gitgiant / giant_backdoor
  Windows login backdoor diagnostic tool
  ☆11Updated 8 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 8 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 10 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆50Updated 9 years ago
• brad-sp / community-modified
  Modified edition of cuckoo community modules
  ☆32Updated 5 years ago