Alternatives and similar repositories for corkami

Users that are interested in corkami are comparing it to the libraries listed below

• x64dbg / x64dbgbinja
  Official x64dbg plugin for Binary Ninja
  ☆80Updated last month
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆54Updated 6 years ago
• ayoubfaouzi / binary-auditing-solutions
  Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.
  ☆81Updated 4 years ago
• Fare9 / Windows-Internals
  My repository to upload drivers from different books and all the information related to windows internals.
  ☆156Updated 5 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 5 years ago
• bootkitsbook / bootkits
  ☆66Updated 6 years ago
• bootkitsbook / rootkits
  ☆106Updated 6 years ago
• alexander-hanel / unicorn-engine-notes
  Notes on using the Python bindings for the Unicorn Engine
  ☆75Updated 5 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆75Updated 10 years ago
• cylance / Ablation
  Ablation is a tool for augmenting static analysis by extracting information at runtime, and importing it into IDA. It can resolve virtual…
  ☆50Updated 8 years ago
• honorarybot / PulseDbg
  Hypervisor-based debugger
  ☆189Updated 4 years ago
• gamozolabs / falkervisor_beta
  ☆74Updated 4 years ago
• rrbranco / blackhat2012
  Blackhat 2012 Sample Codes
  ☆93Updated 8 years ago
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 3 years ago
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆34Updated 6 years ago
• Qubasa / 0pack
  A novel technique to hide code from debuggers & disassemblers
  ☆156Updated 9 months ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆43Updated last year
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆119Updated 6 years ago
• lucasg / msdn-docset
  MSDN in a zeal docset
  ☆48Updated 3 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆182Updated 6 years ago
• RolfRolles / FinSpyVM
  Static unpacker for FinSpy VM
  ☆101Updated 3 years ago
• JeremyWildsmith / x86devirt
  A project that aims to automatically devirtualize code that has been virtualized using x86virt
  ☆126Updated 2 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆123Updated 5 years ago
• tandasat / WinIoCtlDecoder
  IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.
  ☆110Updated last year
• honorarybot / WinDbgSettings
  WinDbg workplace settings that I use for debugging
  ☆16Updated 7 years ago
• Vector35 / sigkit
  Function signature matching and signature generation plugin for Binary Ninja
  ☆70Updated 8 months ago