Alternatives and similar repositories for MalwareBazaar:

Users that are interested in MalwareBazaar are comparing it to the libraries listed below

• g0mxxm / shellcode_extractor_for_maldoc
  The code in this repository which function is to extract the shellcode from the maldoc.
  ☆10Updated last year
• ytincodenito / vEDR
  Vulnerable EDR
  ☆16Updated 5 months ago
• JPCERTCC / AutoYara4FLIRT
  ☆15Updated last year
• huykingsofm / Packed-Infected-PE
  A tool is used to infected a shellcode to PE file, the shellcode is packed at compile time and unpacked at runtime
  ☆13Updated 4 years ago
• h3xduck / TCPcannon
  Offensive Linux tool for network attacks. Built from the ground with only C.
  ☆14Updated 3 years ago
• StrikeReady-Inc / samples
  shared samples from #dailyphish and/or #apt tweets
  ☆39Updated this week
• Neo-Maoku / KillDriverProtect
  关闭恶意驱动的文件和注册表保护
  ☆12Updated 2 years ago
• deepinstinct / PhonyC2-MuddyWater-Research
  MuddyWater C2 framework research
  ☆11Updated last year
• kyxiaxiang / DetectCobaltStrike
  Detect Beacon Powerful (Include CobatStrike 4.10 Aha~)
  ☆19Updated 6 months ago
• varwara / CVE-2024-21338
  PoC for the Untrusted Pointer Dereference in the appid.sys driver
  ☆16Updated last year
• gavz / s4killer
  ☆17Updated last year
• kouzhudong / HidePort
  Hide Port In Windows
  ☆38Updated 6 months ago
• SafeBreach-Labs / CoWTools
  Tools for analyzing Windows containers and break container's isolation
  ☆31Updated 2 years ago
• 0vercl0k / inject
  Yet another Windows DLL injector.
  ☆39Updated 3 years ago
• whokilleddb / A-Study-in-Obfuscation
  A Study in Obfuscation: Analyzing the effect of various techniques to bypass AV engines
  ☆42Updated 2 years ago
• thefLink / Memfiddler
  Executes shellcode from a remote server and aims to evade in-memory scanners
  ☆31Updated 5 years ago
• ASkyeye / CVE-2018-19320
  Exploiting ring0 memcpy-like functionality to disable Driver Signing Enforcement (DSE)
  ☆20Updated 5 years ago
• bharadwajyas / ppdump-public
  Protected Process (Light) Dump: Uses Zemana AntiMalware Engine To Open a Privileged Handle to a PP/PPL Process And Inject MiniDumpWriteDu…
  ☆22Updated 5 years ago
• wolfcod / beacondbg
  Beacon Debugger
  ☆40Updated 5 months ago
• tekwizz123 / demos
  Forked from Akayan. Windows Kernel Exploitation. Static & dynamic analysis, exploits & vuln reasearch. Mitigations bypass's, genric bug-c…
  ☆16Updated 5 months ago
• DamonMohammadbagher / ETWNetMonv3
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆39Updated last year
• V3ded / Blog-Lab
  Source files for my posts
  ☆16Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆32Updated 3 years ago
• jbgalet / yaradec
  Simple yara decompiler
  ☆16Updated 8 years ago
• Idov31 / talks-and-publications
  Released presentations of my talks + code that used during these talks
  ☆13Updated 7 months ago
• jack8daniels2 / threat-INTel
  Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).
  ☆15Updated 8 years ago
• saferwall / malware-souk
  Collaborative malware exchange repository.
  ☆33Updated 5 months ago
• Necrosys / zerowine-tryout
  Zero Wine Tryouts: An open source malware analysis tool
  ☆17Updated 8 years ago
• hackerhouse-opensource / Gigabyte_ElevatePersist
  Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…
  ☆31Updated last year