Alternatives and similar repositories for defender_signature_parser

Users that are interested in defender_signature_parser are comparing it to the libraries listed below

• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆26Updated 3 months ago
• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆112Updated last year
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 4 months ago
• rad9800 / RansomFS
  ☆31Updated 6 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆51Updated 8 months ago
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆39Updated 9 months ago
• thalium / vminer
  ☆89Updated 6 months ago
• WildByDesign / win32-appcontainer-tools
  AppContainer tools for launching sandboxed win32 apps, changing ACL permissions and learning from ETW traces.
  ☆22Updated 4 months ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆80Updated 5 months ago
• emproof-com / webinars
  ☆28Updated 7 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆55Updated 3 years ago
• mandiant / poisonplug-scatterbrain
  Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
  ☆64Updated 5 months ago
• tandasat / CVE-2024-21305
  Report and exploit of CVE-2024-21305.
  ☆36Updated last year
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆19Updated 2 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆79Updated 2 years ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆37Updated 2 years ago
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated last year
• trailofbits / HVCI-loldrivers-check
  ☆58Updated 2 years ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆55Updated 6 months ago
• connormcgarr / Vtl1Mon
  Virtual Trust Level (VTL 1) secure call tracing
  ☆42Updated last week
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆64Updated 2 years ago
• quarkslab / tpmee
  ☆11Updated 3 years ago
• binarly-io / ToolsAndPoCs
  BINARLY Research Tools and PoCs
  ☆36Updated 11 months ago
• winterknife / EVENSTAR
  Intel 64/Windows low-level experiments
  ☆60Updated last week
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆33Updated last year
• ch3rn0byl / Gremlins
  ☆15Updated last year
• rbmm / remap
  break link between dll and it file on disk
  ☆11Updated last year
• nccgroup / mimikatz-detector-condrv
  The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …
  ☆40Updated 2 years ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆120Updated this week
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year