Alternatives and similar repositories for malware

Users that are interested in malware are comparing it to the libraries listed below

• r41p41 / BotKiller
  find and kill injectedThreads from memory
  ☆13Updated 9 years ago
• mahmudz / malware
  ☆27Updated 8 years ago
• Darkabode / possessor
  User-mode part of Zerokit platform
  ☆22Updated 6 years ago
• kysam / NhoVirtualizer
  A simple native code virtualizer for 32-bit Windows PE
  ☆15Updated 9 years ago
• zhuyue1314 / stoned-UEFI-bootkit
  ☆27Updated 9 years ago
• edix / MalwareResourceScanner
  Scanning and identifying XOR encrypted PE files in PE resources
  ☆28Updated 11 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆39Updated 8 years ago
• Cr4sh / SimpleUnpacker
  Simple tool for unpacking packed/protected malware executables.
  ☆33Updated 13 years ago
• stephenfewer / OllyCallTrace
  OllyCallTrace is a plugin for OllyDbg to trace the call chain of a thread.
  ☆53Updated 13 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago
• killvxk / ProReversing
  Open and generic Anti-Anti Reversing Framework. Works in 32 and 64 bits.
  ☆17Updated 12 years ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• hatRiot / DelayLoadInject
  Code injection via delay load libraries
  ☆35Updated 8 years ago
• REhints / BootkitsBook
  repository with additional materials and source code
  ☆31Updated 8 years ago
• ganboing / sdb_packer
  ☆18Updated 10 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆17Updated 6 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 11 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• Darkabode / 0lib
  Zerokit shared code
  ☆17Updated 6 years ago
• swatkat / arkitlib
  Windows anti-rootkit library
  ☆37Updated 10 years ago
• Prevenity / malware_monitor
  Malware monitor template based on MinHook
  ☆16Updated 10 years ago
• therealdreg / emuhookdetector
  hook detector using emulation and comparing static with dynamic outputs
  ☆17Updated 2 years ago
• ahixon / booty
  Bootkit for Windows 7
  ☆29Updated 11 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆26Updated 12 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• sysopfb / Unpackers
  My collection of unpackers for malware packers/crypters
  ☆28Updated 8 years ago
• 0xbadc0de1 / VmP_DBG
  This is a VmProtect integrated debugger, that will essentially allow you to disasm and debug vmp partially virtualized functions at the v…
  ☆47Updated 8 years ago