Alternatives and similar repositories for DotNet-MetaData

Users that are interested in DotNet-MetaData are comparing it to the libraries listed below

• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated 2 years ago
• rbmm / Services
  ☆18Updated 10 months ago
• FarghlyMal / Config-Extractors
  ☆27Updated 11 months ago
• 7eRoM / tutorials
  ☆17Updated 6 months ago
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• EgeBalci / syscall_api
  ☆37Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated 2 years ago
• 0xv1n / proc-suspend
  powershell script i wrote that can suspend an arbitrary process (with limits)
  ☆22Updated 2 years ago
• rbmm / ARL
  ☆24Updated 9 months ago
• cod3nym / Ghosting-AMSI
  Ghosting-AMSI
  ☆18Updated 6 months ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 3 years ago
• MaorSabag / HollowMask
  Just another Process Injection using Process Hollowing technique.
  ☆19Updated 2 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆18Updated 2 years ago
• listinvest / undonut
  Unpacker for donut shellcode
  ☆17Updated 5 years ago
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆32Updated 2 years ago
• Foolish1337 / kernel-programming
  Progress of learning kernel development
  ☆14Updated 2 years ago
• synacktiv / pcapan
  A pcap capture analysis helper
  ☆25Updated 2 years ago
• matthw / malware_analysis
  ☆18Updated last year
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• rbmm / Hollowed-Process
  ☆30Updated 2 months ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• Logisek / CalcOrItDidntHappen
  A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch cal…
  ☆33Updated 3 weeks ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆29Updated 3 years ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆42Updated 2 years ago
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆26Updated 2 years ago
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆20Updated 4 months ago
• bluefrostsecurity / Windows-Drive-Remapping-EoP
  ☆34Updated last year
• shlyuz / teamserver
  ☆12Updated 3 years ago
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago