Alternatives and similar repositories for malware

Users that are interested in malware are comparing it to the libraries listed below

• mahmudz / malware
  ☆27Updated 7 years ago
• joxeankoret / tahh
  Source codes for "The Antivirus Hackers Handbook" book.
  ☆60Updated 9 years ago
• r41p41 / BotKiller
  find and kill injectedThreads from memory
  ☆11Updated 9 years ago
• strazzere / dalvik-header-plugin
  Dalvik Header Plugin for IDA Pro
  ☆22Updated 12 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 13 years ago
• gdbinit / MachOPlugin
  IDA plugin to Display Mach-O headers
  ☆20Updated 13 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆28Updated 10 years ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 9 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 6 years ago
• Coldzer0 / Macho-loader
  load macho files in memory without touching the Disk
  ☆43Updated 2 years ago
• Fyyre / directntapi
  DirectNtApi - simple method to make ntapi function call without importing or walking export table. Work under Windows 7, 8 and 10
  ☆53Updated last year
• humeafo / xcc
  A C/C++ code obfuscator based on llvm/clang technology
  ☆16Updated 10 years ago
• javerous / AsmHelper
  Convert machine code -> assembly code & assembly code -> machine code.
  ☆19Updated 3 months ago
• 0xcpu / Pin-ApiTracer
  Updated version of ApiTracer Pin tool
  ☆22Updated 7 years ago
• sysopfb / Unpackers
  My collection of unpackers for malware packers/crypters
  ☆28Updated 7 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• GeoSn0w / Hexify
  A quick String < - > HEX tool for Windows with Drag & Drop and File saving
  ☆12Updated 6 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• owerosu / packerPE32
  Simple PE packer with RtlCompressBuffer
  ☆21Updated 9 years ago
• REhints / BootkitsBook
  repository with additional materials and source code
  ☆32Updated 8 years ago
• Cr4sh / prl_guest_to_host
  Guest to host VM escape exploit for Parallels Desktop
  ☆28Updated 10 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆39Updated 10 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆25Updated 11 years ago
• nettitude / InlineFunctionHooking
  Windows Inline function hooking library targeted at MSVC
  ☆27Updated 8 years ago
• RolfRolles / HiddenBeeLoader
  IDA loader module for Hidden Bee's custom executable file format
  ☆20Updated 6 years ago
• yzx65 / Packer
  Simple executable packer
  ☆10Updated 11 years ago
• techbliss / Free_the_Debuggers
  Free_the_Debuggers
  ☆19Updated 10 years ago
• maldevel / PEdumper
  Dump Windows PE file information in C
  ☆23Updated 10 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago