Alternatives and similar repositories for malware_analysis_tools

Users that are interested in malware_analysis_tools are comparing it to the libraries listed below

• FarghlyMal / Config-Extractors
  ☆27Updated last year
• matthw / malware_analysis
  ☆18Updated last year
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Updated 3 years ago
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆32Updated 2 years ago
• NVISOsecurity / blogposts
  A repo to house files for our blogposts on blog.nviso.eu
  ☆74Updated 9 months ago
• persistent-security / hermes-the-messenger
  A PoC for achieving persistence via push notifications on Windows
  ☆48Updated 2 years ago
• skelsec / pypykatz-volatility3
  pypykatz plugin for volatility3 framework
  ☆45Updated 6 months ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆42Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆40Updated 4 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆57Updated 2 years ago
• jonny-jhnson / LDAPMon
  ☆45Updated 2 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 3 years ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆37Updated 3 years ago
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆55Updated 4 years ago
• RiccardoAncarani / talks
  ☆43Updated 3 years ago
• fashionproof / RunHijackHunter
  ☆18Updated 4 years ago
• dis0rder0x00 / CanYouCTheThief
  A C implementation of the Sektor7 "A Thief" Windows privesc technique.
  ☆69Updated 3 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• antonioCoco / infosec-talks
  ☆49Updated 2 years ago
• anyrun / blog-scripts
  ☆34Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• FuzzySecurity / WWHF-WayWest-2022
  ☆37Updated 3 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆51Updated 3 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated 2 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 3 years ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆88Updated 3 years ago