Alternatives and similar repositories for DotNet-MetaData

Users that are interested in DotNet-MetaData are comparing it to the libraries listed below

• rbmm / Services
  ☆18Updated 6 months ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆17Updated 3 months ago
• FarghlyMal / Config-Extractors
  ☆27Updated 8 months ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• antonioCoco / infosec-talks
  ☆48Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆20Updated 2 years ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆99Updated last year
• yoavshah / ImportlessApi
  ☆17Updated last year
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• 7eRoM / tutorials
  ☆16Updated 2 months ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated last year
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆41Updated 2 years ago
• TimMisiak / RunWithDll
  A utility that can be used to launch an executable with a DLL injected
  ☆20Updated last year
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆15Updated 3 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• X-C3LL / memdlopen-lib
  ☆13Updated 2 years ago
• therealdreg / dregate
  call gates as stable comunication channel for NT x86 and Linux x86_64
  ☆32Updated last year
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆53Updated 4 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆32Updated last year
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆27Updated 2 years ago
• codewhitesec / SysmonEnte
  ☆74Updated 2 years ago
• matthw / malware_analysis
  ☆18Updated last year
• thiagopeixoto / allsysno
  This tool parses NTDLL.DLL, extracts all the syscall numbers and helps in making direct syscalls, in order to help evasion.
  ☆15Updated 3 years ago