Alternatives and similar repositories for malware:

Users that are interested in malware are comparing it to the libraries listed below

• mahmudz / malware
  ☆27Updated 7 years ago
• jmpews / rtspy
  runtime spy elf with android/linux and macho with macOS/IOS
  ☆34Updated 7 years ago
• r41p41 / BotKiller
  find and kill injectedThreads from memory
  ☆10Updated 8 years ago
• gdbinit / MachOPlugin
  IDA plugin to Display Mach-O headers
  ☆20Updated 13 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆20Updated 5 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 10 years ago
• Iciclez / memory-analyzer
  A loadable dll that tracks memory changes, IAT hooks, and dynamically emplaced "JMP" in the host executable
  ☆11Updated last year
• GeoSn0w / Hexify
  A quick String < - > HEX tool for Windows with Drag & Drop and File saving
  ☆12Updated 6 years ago
• cocoahuke / iosdumpkernelfix
  This tool will help to fix the Mach-O header of iOS kernel which dump from the memory. So that IDA or function symbol-related tools can l…
  ☆22Updated 7 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 7 years ago
• javerous / AsmHelper
  Convert machine code -> assembly code & assembly code -> machine code.
  ☆19Updated 10 months ago
• star-sg / kernelcache_decryptor
  Kernel Cache Decryption for iOS
  ☆14Updated 3 years ago
• 0xcpu / Pin-ApiTracer
  Updated version of ApiTracer Pin tool
  ☆22Updated 6 years ago
• humeafo / xcc
  A C/C++ code obfuscator based on llvm/clang technology
  ☆15Updated 10 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆38Updated 9 years ago
• Cr4sh / prl_guest_to_host
  Guest to host VM escape exploit for Parallels Desktop
  ☆28Updated 10 years ago
• bazad / macho_gadgets
  A tool to find gadgets in the iOS kernelcache.
  ☆33Updated 6 years ago
• yzx65 / Packer
  Simple executable packer
  ☆10Updated 10 years ago
• bazad / launchd-portrep
  CVE-2018-4280: Mach port replacement vulnerability in launchd on macOS 10.13.5 leading to local privilege escalation and SIP bypass.
  ☆58Updated 6 years ago
• maninfire / ruimyfuzzer
  ☆14Updated 6 years ago
• mrmacete / r2-ios-kernelcache
  Radare2 plugin to parse modern iOS 64-bit kernel caches
  ☆29Updated 5 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 10 years ago
• bazad / ctl_ctloutput-leak
  CVE-2017-13868: Information leak of uninitialized kernel heap data in XNU.
  ☆28Updated 7 years ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 9 years ago
• strazzere / dalvik-header-plugin
  Dalvik Header Plugin for IDA Pro
  ☆21Updated 11 years ago