Alternatives and similar repositories for winapi-deobfuscation

Users that are interested in winapi-deobfuscation are comparing it to the libraries listed below

• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 3 years ago
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆31Updated 6 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 5 years ago
• piotrflorczyk / cve-2018-8174_analysis
  Analysis of VBS exploit CVE-2018-8174
  ☆30Updated 7 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆42Updated 5 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆26Updated 6 years ago
• IOActive / FuzzNDIS
  A Fuzzer for Windows NDIS Drivers OID Handlers
  ☆94Updated 3 years ago
• dro / uac-launchinf-poc
  Windows 10 UAC bypass PoC using LaunchInfSection
  ☆34Updated 7 years ago
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆44Updated 6 years ago
• Sentinel-One / minhook
  The Minimalistic x86/x64 API Hooking Library for Windows
  ☆32Updated 7 years ago
• siberas / CVE-2016-3309_Reloaded
  Exploits for the win32kfull!bFill vulnerability on Win10 x64 RS2 using Bitmap or Palette techniques
  ☆54Updated 7 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆63Updated 8 years ago
• sam-b / HackSysDriverExploits
  ☆50Updated 8 years ago
• hugsy / hevd
  Public repository for HEVD exploits
  ☆20Updated 7 years ago
• JaanusKaapPublic / Silfen
  Windows syscall fuzzer that I used in 2017 & 2018. Not much to say about it but maybe helpful to someone. At least syscall information it…
  ☆20Updated 5 years ago
• saweol / vwaad
  IDA script for vmprotect Windows Api address decoder
  ☆51Updated 4 years ago
• b09780978 / SEH_Fuzzer
  This is a fuzzer for Windows SEH buffer overflow.
  ☆15Updated 7 years ago
• MortenSchenk / RtlCaptureContext-CFG-Bypass
  Internet Explorer Exploit with CFG bypass for Windows 10
  ☆55Updated 8 years ago
• RceNinja / Re-Scripts
  ☆34Updated 4 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆110Updated 5 years ago
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆37Updated 6 years ago
• carter-yagemann / vmi-unpack
  VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.
  ☆56Updated 5 years ago
• mponcet / subversive
  x86_64 linux rootkit using debug registers
  ☆52Updated 3 years ago
• fdfalcon / TypeIsolationDbg
  A little WinDbg extension to help dump the state of Win32k Type Isolation structures.
  ☆38Updated 7 years ago
• 86hh / PagedOut2
  My articles for Paged Out! #2
  ☆17Updated 5 years ago
• bnagy / raf
  Ruby ALPC Fuzzer ( joke )
  ☆24Updated 10 years ago
• RanchoIce / 44Con2018
  Slides of 44Con 2018
  ☆21Updated 6 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago