Alternatives and similar repositories for Understanding_the_NDIS_6_stack

Users that are interested in Understanding_the_NDIS_6_stack are comparing it to the libraries listed below

• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆41Updated 8 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• motazreda / MalwareFragmentationTool
  Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…
  ☆36Updated 9 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• deroko / payloadrestrictions
  ☆34Updated 7 years ago
• helpsystems / GDIObjDump
  ☆35Updated 9 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• jjo-sec / idataco
  IDATACO IDA Pro Plugin
  ☆47Updated 9 years ago
• Cisco-Talos / FIRST-server
  ☆32Updated last year
• int0 / ltmdm64_poc
  ☆28Updated 8 years ago
• zynamics / msdn-plugin-ida
  Imports MSDN documentation into IDA Pro
  ☆51Updated 13 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆21Updated 10 years ago
• sam-b / windows_syscalls_dumper
  A dirty IDAPython script to dump windows system call number/name pairs as JSON
  ☆37Updated 8 years ago
• zer0box / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆24Updated 10 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 7 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆49Updated 8 years ago
• BreakingMalware / AVulnerabilityChecker
  Tool to check if your computer is likely to be vulnerable to exploitable constant Read-Write-Execute (RWX) addresses (AVs vulnerability)
  ☆52Updated 9 years ago
• iphelix / ida-pomidor
  IDA Pomidor is a plugin for Hex-Ray's IDA Pro disassembler that will help you retain concentration and productivity during long reversing…
  ☆35Updated 10 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 7 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 7 years ago
• eurecom-s3 / actaeon
  Memory forensics of virtualization environments
  ☆46Updated 10 years ago
• msuiche / malcheck
  Portable utility to check if a machine has been infected by Shamoon2
  ☆15Updated 8 years ago
• nao-sec / mal_getter
  Tool for dropping malware from EK
  ☆40Updated 7 years ago
• REhints / BlackHat_2015
  Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis
  ☆66Updated 9 years ago
• 4B5F5F4B / PoCs
  ☆26Updated 8 years ago
• tillmannw / swffile
  swffile.py - SWF file parser module in Python
  ☆28Updated 9 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 7 years ago