Alternatives and similar repositories for capemon

Users that are interested in capemon are comparing it to the libraries listed below

• hasherezade / tag_converter
  ☆22Updated 4 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆26Updated 5 years ago
• spender-sandbox / cuckoomon-modified
  Modified edition of cuckoomon
  ☆49Updated 7 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆49Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆38Updated 9 years ago
• atlantis2013 / Evasion-Tools
  Anti-technique Codes, Detection of Anti-technique codes
  ☆38Updated 11 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• ThisIsSecurity / malware
  ☆43Updated 6 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• Sentinel-One / minhook
  The Minimalistic x86/x64 API Hooking Library for Windows
  ☆32Updated 7 years ago
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆56Updated 6 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 7 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 5 years ago
• tandasat / RemoteWriteMonitor
  A tool to help malware analysts tell that the sample is injecting code into other process.
  ☆78Updated 9 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆38Updated 8 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆72Updated 8 years ago
• williamshowalter / hdroot-bootkit-analysis
  Supporting Files on my analysis of the malware designated hdroot.
  ☆59Updated 8 years ago
• ofercas / ransomware_begone
  ransomware_begone
  ☆42Updated 9 years ago
• NtRaiseHardError / UnRunPE
  PoC for detecting and dumping process hollowing code injection
  ☆51Updated 6 years ago
• zodiacon / Blog
  Blog posts
  ☆30Updated 4 years ago
• avast / yaracpp
  C++ wrapper for YARA.
  ☆45Updated 5 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• rmadair / PE-Injector
  Inject shellcode into extra file alignment padding of a PE and change the entry point to point to the shellcode. On execution, the shellc…
  ☆21Updated 12 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆41Updated 5 years ago
• psaneme / Kung-Fu-Malware
  ☆33Updated 6 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆34Updated 2 years ago
• maldevel / driver-loader
  Load a Windows Kernel Driver
  ☆92Updated 8 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆36Updated 7 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago