Alternatives and similar repositories for malware-research

Users that are interested in malware-research are comparing it to the libraries listed below

• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• whichbuffer / Lockbit-Black-3.0
  ☆26Updated 3 years ago
• jfmaes / Red-Route53-Interactive
  ☆19Updated 5 years ago
• byt3bl33d3r / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆20Updated 5 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆17Updated last year
• purpl3f0xsecur1ty / OSCE-prep
  Exploits made practicing for OSCE
  ☆23Updated 5 years ago
• jfmaes / Clippi-B
  ☆37Updated 5 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆12Updated 5 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 5 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 3 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆25Updated 3 years ago
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆29Updated 6 years ago
• qsecure-labs / Sp00fer
  Sp00fer blog post -
  ☆24Updated 3 years ago
• robomotic / invoke-antivm
  powershell tool for VM evasion
  ☆42Updated 5 years ago
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆23Updated 2 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆31Updated 3 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆21Updated 2 years ago
• redcode-labs / poXSSon
  A framework for easy payloads development and deployment, collection of customizable XSS payloads
  ☆25Updated 3 years ago
• sourcefrenchy / goqrexfil
  A mini project to exfiltrate data via QR codes
  ☆19Updated last month
• twelvesec / dexter
  Data EXfiltration TestER
  ☆21Updated 6 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆13Updated 4 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated 2 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆25Updated 3 years ago
• py7hagoras / OfficeMacro64
  This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…
  ☆21Updated 5 years ago
• NVISOsecurity / FileSearcher
  ☆24Updated 5 years ago
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 3 years ago
• SpiderLabs / pingback
  ☆28Updated 4 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆22Updated 3 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆16Updated 5 years ago