Alternatives and similar repositories for WhiteBeam

Users that are interested in WhiteBeam are comparing it to the libraries listed below

• epi052 / rustdsplit
  At some point, I learned about a method to perform a binary search on a file in order to identify its AV signature and change it to bypas…
  ☆35Updated 5 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 6 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated 4 months ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated 2 months ago
• rek7 / madlib
  PAM Backdoor
  ☆29Updated 2 years ago
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆50Updated 8 months ago
• jacopodl / Pulsar
  Data exfiltration and covert communication tool
  ☆39Updated 2 years ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆51Updated 3 years ago
• jeffjbowie / intelligence_gathering
  A collection of scripts for the purpose of gathering open source intelligence, to be presented at GrayHat, BSides Denver, and Information…
  ☆25Updated 4 years ago
• sandflysecurity / sandfly-processdecloak
  Sandfly Linux Stealth Rootkit Decloaking Utility
  ☆102Updated 2 years ago
• redcanaryco / exploit-primitive-playground
  ☆64Updated last year
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated last year
• visma-prodsec / columbo
  Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.
  ☆61Updated 3 years ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆131Updated last year
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 4 years ago
• CounterHack / mandrake
  A rust utility for instrumenting binaries, used in Holiday Hack Challenge 2021
  ☆27Updated 3 years ago
• limbenjamin / nTimetools
  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
  ☆50Updated 3 years ago
• Peco602 / rusthunter
  RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.
  ☆18Updated 3 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆95Updated 6 years ago
• fboldewin / misc_malware
  ☆37Updated 3 years ago
• cybiere / baboossh
  SSH spreading made easy for red teams in a hurry
  ☆57Updated last year
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated last year
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago