Alternatives and similar repositories for DotNet-MetaData

Users that are interested in DotNet-MetaData are comparing it to the libraries listed below

• FarghlyMal / Config-Extractors
  ☆27Updated 10 months ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• synacktiv / pcapan
  A pcap capture analysis helper
  ☆25Updated 2 years ago
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆32Updated 2 years ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆17Updated 5 months ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 3 years ago
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• rbmm / Services
  ☆18Updated 8 months ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆20Updated last year
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆50Updated 2 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆16Updated 3 years ago
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆20Updated 3 months ago
• matthw / malware_analysis
  ☆18Updated last year
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• X-C3LL / memdlopen-lib
  ☆13Updated 2 years ago
• yoavshah / ImportlessApi
  ☆17Updated last year
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 4 years ago
• c3rb3ru5d3d53c / peexports
  A Multi-Threaded PE Export Collection Utility
  ☆15Updated 2 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 2 years ago
• jonny-jhnson / LDAPMon
  ☆45Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• MMitsuha / Tajimari
  the Open Source and Pure C++ Packer for eXecutables
  ☆21Updated 2 years ago
• cyberark / malware-research
  ☆37Updated 7 months ago
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Updated 3 years ago