Alternatives and similar repositories for malware

Users that are interested in malware are comparing it to the libraries listed below

• mahmudz / malware
  ☆28Updated 8 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• therealdreg / emuhookdetector
  hook detector using emulation and comparing static with dynamic outputs
  ☆17Updated 2 years ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 10 years ago
• stephenfewer / OllyCallTrace
  OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.
  ☆54Updated 14 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 14 years ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• kysam / NhoVirtualizer
  A simple native code virtualizer for 32-bit Windows PE
  ☆15Updated 9 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• GeoSn0w / Hexify
  A quick String < - > HEX tool for Windows with Drag & Drop and File saving
  ☆10Updated 7 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 11 years ago
• huku- / injectdso
  A collection of tools for injecting DSOs in processes under various operating systems
  ☆51Updated 3 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆17Updated 6 years ago
• yaseralnajjar / deobfuscation-helper
  A simple tool to help reverse engineers while dealing with obfuscated code.
  ☆20Updated 9 years ago
• humeafo / xcc
  A C/C++ code obfuscator based on llvm/clang technology
  ☆16Updated 11 years ago
• pitercantropo / dd
  ☆15Updated 7 years ago
• Iciclez / memory-analyzer-x86
  A loadable dll that tracks memory changes, IAT hooks, and dynamically emplaced "JMP" in the x86 host executable.
  ☆12Updated 2 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆36Updated 10 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆35Updated 8 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆26Updated 12 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆15Updated 8 years ago
• Darkabode / 0lib
  Zerokit shared code
  ☆17Updated 6 years ago
• NtRaiseHardError / Providence
  Kernel-mode file scanner
  ☆19Updated 7 years ago
• yifengyou / Software-protection-and-analysis-techniques---principles-and-practices
  软件保护及分析技术——原理与实践
  ☆18Updated 8 years ago
• flowercodec / IDA2PAT_Reloaded
  IDA2PAT_Reloaded for windows and mac osx
  ☆13Updated 8 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago
• pstolarz / asprext
  ASProtect reverse engineering & analysis WinDbg extension
  ☆23Updated 5 years ago
• DePierre / pts
  Packer for PE and ELF, 32 and 64bits.
  ☆22Updated 12 years ago
• nettitude / InlineFunctionHooking
  Windows Inline function hooking library targeted at MSVC
  ☆27Updated 9 years ago
• coldshell / IDA-appcall
  ☆13Updated 8 years ago