Alternatives and similar repositories for pycave

Users that are interested in pycave are comparing it to the libraries listed below

• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 5 years ago
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆87Updated 6 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆45Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆73Updated 2 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆57Updated 3 years ago
• OALabs / trashdbg
  TrashDBG the world's worse debugger
  ☆23Updated 3 years ago
• mattifestation / PoCSubjectInterfacePackage
  A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
  ☆100Updated 8 years ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆70Updated 4 years ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆48Updated 2 years ago
• Coalfire-Research / ERC.Xdbg
  An Xdbg Plugin of the ERC Library.
  ☆26Updated last year
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆72Updated 3 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆45Updated 4 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated 2 years ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆29Updated 5 years ago
• connormcgarr / An-Intro-2-Win-ED
  "An Introduction to Windows Exploit Development" is an open sourced, free Windows exploit development course I created for the Southeast …
  ☆41Updated 5 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆110Updated 4 years ago
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆53Updated last year
• Maff1t / WindowsPermsPoC
  A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows
  ☆53Updated 4 years ago
• repnz / shellcode2exe
  Batch script to compile a binary shellcode blob into an exe file
  ☆88Updated 6 years ago
• msuiche / smbaloo
  ☆48Updated 5 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆63Updated 5 years ago
• zacateras / sddl-parser
  Security Descriptor Definition Language (SDDL) Parser
  ☆38Updated 3 months ago
• GrayKernel / GrayFrost
  C++ DLL Bootstrapper for spinning up the CLR for C# Payloads
  ☆44Updated 6 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 5 years ago
• mauronz / binja-emotet
  ☆19Updated 5 years ago
• CERTCC / privesc
  Process Monitor filter for finding privilege escalation vulnerabilities on Windows
  ☆79Updated 4 years ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago