Alternatives and similar repositories for malware

Users that are interested in malware are comparing it to the libraries listed below

• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆26Updated 12 years ago
• kysam / NhoVirtualizer
  A simple native code virtualizer for 32-bit Windows PE
  ☆15Updated 9 years ago
• mahmudz / malware
  ☆27Updated 8 years ago
• GeoSn0w / Hexify
  A quick String < - > HEX tool for Windows with Drag & Drop and File saving
  ☆12Updated 6 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆35Updated 8 years ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 10 years ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆36Updated 10 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• Iciclez / memory-analyzer-x86
  A loadable dll that tracks memory changes, IAT hooks, and dynamically emplaced "JMP" in the x86 host executable.
  ☆12Updated 2 years ago
• yaseralnajjar / deobfuscation-helper
  A simple tool to help reverse engineers while dealing with obfuscated code.
  ☆20Updated 9 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 11 years ago
• stephenfewer / OllyCallTrace
  OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.
  ☆54Updated 14 years ago
• REhints / BootkitsBook
  repository with additional materials and source code
  ☆31Updated 8 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 14 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• killvxk / ProReversing
  Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.
  ☆17Updated 13 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆17Updated 6 years ago
• mq1n / Wow64SyscallHook
  Wow64 syscall hook
  ☆42Updated 8 years ago
• hailehong95 / practice-maldev
  Common Malware Techniques
  ☆13Updated 2 years ago
• CvX / hadesmem
  HadesMem is a C++-based memory hacking library for Windows based applications, with the goal of providing a safe, generic, powerful, and …
  ☆28Updated 10 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 12 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• therealdreg / emuhookdetector
  hook detector using emulation and comparing static with dynamic outputs
  ☆17Updated 2 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆15Updated 8 years ago
• n3k / misc_exploits_pocs
  Miscellaneous old Exploit code and PoCs
  ☆16Updated last year
• apriorit / Simple-Antirootkit-SST-Unhooker
  This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
  ☆33Updated 8 years ago
• RolfRolles / HiddenBeeLoader
  IDA loader module for Hidden Bee's custom executable file format
  ☆20Updated 7 years ago