Alternatives and similar repositories for defender_signature_parser

Users that are interested in defender_signature_parser are comparing it to the libraries listed below

• AaLl86 / WindowsInternals
  Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book
  ☆113Updated last year
• thalium / vminer
  ☆90Updated 8 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆52Updated 9 months ago
• WildByDesign / win32-appcontainer-tools
  AppContainer tools for launching sandboxed win32 apps, changing ACL permissions and learning from ETW traces.
  ☆27Updated 5 months ago
• rad9800 / RansomFS
  ☆32Updated 8 months ago
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆25Updated 5 months ago
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆56Updated 7 months ago
• badhive / alca
  Rule Engine for Dynamic Malware Analysis and Research
  ☆25Updated 6 months ago
• VergiliusProject / kernels-data
  Windows kernel PDB data parsed into YAML
  ☆41Updated this week
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆42Updated last year
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆68Updated 2 years ago
• mandiant / poisonplug-scatterbrain
  Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
  ☆64Updated 7 months ago
• trailofbits / HVCI-loldrivers-check
  ☆56Updated 2 years ago
• ghidragolf / ghidra_scripts
  Scripts from Ghidra Golf competitions
  ☆34Updated 2 years ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆56Updated 3 years ago
• zodiacon / Recon2023
  Recon 2023 slides and code
  ☆80Updated 2 years ago
• vmsplit / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆83Updated 7 months ago
• 0vercl0k / udmp-parser-rs
  A Rust crate for parsing Windows user minidumps.
  ☆41Updated last year
• ZetaTwo / prime-finder
  Find RSA primes in files
  ☆20Updated 3 years ago
• binarly-io / ToolsAndPoCs
  BINARLY Research Tools and PoCs
  ☆38Updated last year
• yo-yo-yo-jbo / virtual_memory_known_dlls
  ☆20Updated 2 years ago
• domenukk / dragondance
  Binary code coverage visualizer plugin for Ghidra - just without crashes on unknown insns
  ☆19Updated 11 months ago
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆48Updated 2 years ago
• airbus-cert / minusone
  Powershell Linter
  ☆84Updated this week
• pygrum / siphon
  A feed of malware samples curated from threat intelligence sources.
  ☆28Updated 2 years ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆130Updated this week
• Slowerzs / KeyJumper
  ☆50Updated 7 months ago
• psifertex / terminal_velocity
  CTF Challenge for CSAW Finals 2021
  ☆12Updated 3 years ago
• huettenhain / ghidradark
  How to retro theme your Ghidra
  ☆35Updated 2 weeks ago