Alternatives and similar repositories for Anti-Forensics

Users that are interested in Anti-Forensics are comparing it to the libraries listed below

• georgesotiriadis / MalwareDev
  ☆85Updated 3 years ago
• jaredcatkinson / MalwareMorphology
  ☆84Updated last year
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated 2 years ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆88Updated last month
• sensepost / mydumbedr
  ☆119Updated last year
• eric-conrad / c2-talk
  ☆37Updated last year
• lewiswigmore / virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆59Updated 3 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 6 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆41Updated 4 years ago
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated 2 years ago
• MalwareTech / HiddenDesktop
  Create and enumerate hidden desktops.
  ☆88Updated 2 years ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆72Updated 11 months ago
• dodo-sec / Malware-Analysis
  ☆138Updated 2 years ago
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆37Updated last year
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆137Updated 2 years ago
• LOFL-Project / LOFLCAB
  ☆55Updated last year
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆140Updated last year
• hackerhouse-opensource / Artillery
  CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…
  ☆182Updated 2 years ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆59Updated 10 months ago
• SafeBreach-Labs / wd-pretender
  ☆132Updated 2 years ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated 2 years ago
• naacbin / CovenantDecryptor
  ☆34Updated 2 years ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆109Updated 2 years ago
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆108Updated 3 years ago
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆31Updated 3 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆70Updated last year
• PenetrumLLC / Malcore-Playbook
  Modular framework for automating triaging, malware analysis, and analyst workflows
  ☆44Updated 8 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 5 months ago