Alternatives and similar repositories for defender_signature_parser

Users that are interested in defender_signature_parser are comparing it to the libraries listed below

• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆112Updated last year
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆38Updated 9 months ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆26Updated 2 months ago
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 3 months ago
• rad9800 / RansomFS
  ☆31Updated 5 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆78Updated 4 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆36Updated last year
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆59Updated 3 weeks ago
• WildByDesign / win32-appcontainer-tools
  AppContainer tools for launching sandboxed win32 apps, changing ACL permissions and learning from ETW traces.
  ☆22Updated 3 months ago
• thalium / vminer
  ☆88Updated 6 months ago
• b-irb / PigPEI
  PEIM (UEFI) bootkit targeting OVMF (EDK2)
  ☆36Updated last year
• ea / xfg_analyzer
  A Binary Ninja plugin that uses bruteforced XFG hashes to recover precise function prototypes
  ☆16Updated last year
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆19Updated 2 years ago
• rbmm / TPM
  Easy encrypt/decrypt data with TPM
  ☆25Updated last year
• mandiant / poisonplug-scatterbrain
  Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
  ☆64Updated 4 months ago
• goatmilkkk / TinyProcessor
  A post-processing script for TinyTracer
  ☆37Updated 2 years ago
• ch3rn0byl / Gremlins
  ☆15Updated last year
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆91Updated 2 months ago
• rce-3 / xenith
  Research-focused hypervisor offering advanced tools for debugging, virtual machine introspection, and automation.
  ☆37Updated last month
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated 2 years ago
• vmi-rs / vmi
  Modular and extensible library for Virtual Machine Introspection
  ☆107Updated 2 months ago
• jonaslyk / temp
  ☆71Updated 2 years ago
• tandasat / hvext
  The Windbg extensions to study Hyper-V on Intel and AMD processors.
  ☆156Updated 5 months ago
• KiFilterFiberContext / windows-software-policy
  Research on obfuscated licensing APIs / CLIP service in the Windows kernel
  ☆118Updated 2 years ago
• ZetaTwo / prime-finder
  Find RSA primes in files
  ☆20Updated 3 years ago
• backengineering / elderscroll
  PDB Rewriting Rust Library
  ☆24Updated last year
• TimMisiak / windup
  WinDbg installer/updater
  ☆41Updated 2 years ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆38Updated 3 years ago
• leandrofroes / bn_ifl
  IFL - Interactive Functions List (plugin for Binary Ninja)
  ☆24Updated last year
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆119Updated 2 months ago