Alternatives and similar repositories for MalwareBazaar

Users that are interested in MalwareBazaar are comparing it to the libraries listed below

• ytincodenito / vEDR
  Vulnerable EDR
  ☆23Updated last year
• StrikeReady-Inc / samples
  shared samples from #dailyphish and/or #apt tweets
  ☆41Updated 5 months ago
• Maldev-Academy / CodeSearchDemo
  ☆41Updated last year
• errbody / DPRK-Research
  ☆46Updated 2 months ago
• fortra / CVE-2024-30051
  ☆125Updated last year
• struppigel / PortexAnalyzerGUI
  Graphical interface for PortEx, a Portable Executable and Malware Analysis Library
  ☆143Updated 7 months ago
• HydraDragonAntivirus / HydraDragonPlatform
  Dynamic and static analysis with Real Time Malware/Executable Analysis Platform for Windows, including open-source XDR (2 EDR projects), …
  ☆143Updated this week
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆40Updated 9 months ago
• marcusbotacin / Dropper
  Embed an executable as a PE resource, drops and launches it in runtime.
  ☆64Updated 4 years ago
• EvilBytecode / Eset-Unload
  Eset-Unload is a C++ tool that interacts with a process's loaded modules to identify and unload the ebehmoni.dll module, typically found …
  ☆12Updated 9 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆142Updated this week
• t0-retooling / defender-recon24
  ☆59Updated last year
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆57Updated last year
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆47Updated last year
• qwqdanchun / Malware-Note
  https://docs.qwqdanchun.com/
  ☆27Updated 4 years ago
• jeFF0Falltrades / rat_king_parser
  A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …
  ☆66Updated 3 weeks ago
• 0xedh / DEFCON33-KillChainReloaded
  Repository for the DEF CON 33 talk: Kill Chain Reloaded
  ☆77Updated 6 months ago
• Maldev-Academy / PrefetchFileParser
  A lightweight Windows Prefetch file parser to extract programs' execution history
  ☆49Updated 3 weeks ago
• TwoSevenOneT / DefenderWrite
  A tool that supports finding and abusing whitelisted programs to allow arbitrary file writing into the executable folder of Antivirus sof…
  ☆80Updated 3 months ago
• CyberSecurityUP / ProcessKiller-BYOVD
  BYOVD Technique Example using viragt64 driver
  ☆68Updated last year
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆50Updated last year
• voukatas / Commander
  A command and control (C2) server
  ☆58Updated last year
• m417z / thread-call-stack-scanner
  Safely manage the unloading of DLLs that have been hooked into a process. Context: https://github.com/KNSoft/KNSoft.SlimDetours/discussio…
  ☆81Updated 7 months ago
• ldpreload / werkernel
  Windows LPE Nday
  ☆32Updated last year
• raykaryshyn / FakeTLS
  Client/server code that impersonates TLS 1.3 to disguise C2 activity.
  ☆73Updated 3 years ago
• AlSch092 / ObfuscateThis
  Templated Obfuscation example in C++ for protecting/hiding values in memory
  ☆40Updated last year
• MatheuZSecurity / ElfDoor-gcc
  ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.
  ☆131Updated 9 months ago
• exploits-forsale / CVE-2024-21345
  Proof-of-Concept for CVE-2024-21345
  ☆76Updated last year
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆168Updated last year
• AsuNa-jp / HotkeybasedKeyloggerDetector
  ☆21Updated 11 months ago