Alternatives and similar repositories for DotNet-MetaData

Users that are interested in DotNet-MetaData are comparing it to the libraries listed below

• FarghlyMal / Config-Extractors
  ☆27Updated 9 months ago
• matthw / malware_analysis
  ☆18Updated last year
• rbmm / Services
  ☆18Updated 8 months ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆16Updated 3 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• rbmm / ARL
  ☆25Updated 7 months ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆17Updated 4 months ago
• synacktiv / pcapan
  A pcap capture analysis helper
  ☆25Updated 2 years ago
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• codewhitesec / SysmonEnte
  ☆74Updated 2 years ago
• rbmm / Hollowed-Process
  ☆30Updated 2 weeks ago
• Abdelrahme / WinLogHunt
  ☆18Updated 3 weeks ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 4 years ago
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 11 months ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆20Updated last year
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆41Updated 2 years ago
• jonny-jhnson / LDAPMon
  ☆45Updated last year
• BlackHat-Ashura / Process_Ghosting
  Process Ghosting is a technique in which a process is created from a delete pending file. This means the created process is not backed by…
  ☆15Updated last year
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆50Updated 2 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆42Updated 11 months ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 2 years ago
• JCSteiner / SGCC---public
  Command and Control Framework using powershell implants
  ☆35Updated 2 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year