Alternatives and similar repositories for malware-research

Users that are interested in malware-research are comparing it to the libraries listed below

• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 4 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆12Updated 4 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated last year
• Syslifters / split-bloodhound
  ☆18Updated last year
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 3 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆10Updated 7 years ago
• diljith369 / nim4Pentest
  My nim learning experiments
  ☆11Updated 2 years ago
• xenoscr / compressedCredBandit
  A variation CredBandit that uses compression to reduce the size of the data that must be trasnmitted.
  ☆19Updated 3 years ago
• fozavci / ransoblin
  Ransoblin (Ransomware Bokoblin)
  ☆18Updated 4 years ago
• vyrus001 / ebowla-2
  reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support
  ☆22Updated 3 years ago
• ThunderGunExpress / BringYourOwnBuilder
  ☆9Updated 4 years ago
• ChoiSG / sNanoDumpInject
  NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls
  ☆11Updated 2 years ago
• bigb0sss / Offensive-Scripts
  Some Pentesting Scripts
  ☆11Updated 3 years ago
• SpiderLabs / pingback
  ☆28Updated 4 years ago
• rmdavy / AmsiPEBWalkVBA
  Walking the PEB in VBA
  ☆23Updated 5 years ago
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Updated 5 years ago
• tomcarver16 / SimpleInjector
  A simple injector that uses LoadLibraryA
  ☆18Updated 4 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 4 years ago
• blackarrowsec / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆17Updated 4 years ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆30Updated 4 years ago
• aj-code / 3gsocks
  3gsocks - a reverse connection socks5 based network pivot
  ☆10Updated 4 years ago
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆17Updated 6 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• waldo-irc / UPSInject
  Unamanged PS with Named Pipes
  ☆9Updated 4 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 3 years ago