Alternatives and similar repositories for malware-analysis

Users that are interested in malware-analysis are comparing it to the libraries listed below

• thecatenjoyer / singlestep_xorstub
  Stub for polymorphic code
  ☆12Updated 2 years ago
• maluramichael / simple-dll-injection-example
  ☆10Updated 6 years ago
• brosck / MBROverwrite
  「💽」MBR Overwrite malware for linux
  ☆26Updated 6 months ago
• winsecurity / exploit_development
  ☆12Updated 4 years ago
• mentebinaria / elfparser-ng
  Multiplatform CLI and GUI tool to show information about ELF files
  ☆58Updated last year
• thau0x01 / poc_proxylogon
  Microsoft Exchange ProxyLogon PoC (CVE-2021-26855)
  ☆8Updated 3 years ago
• embee-research / Icedid-file-decryptor
  Static Decryptor for IcedID Malware
  ☆18Updated 2 years ago
• brosck / Frosty
  「🧊」Ring 3 Rootkit for Windows 10
  ☆57Updated 6 months ago
• merces / entropy
  CLI program to calculate the entropy of files
  ☆70Updated last year
• unkvolism / Misery
  Misery Loader to bypass modern EDR solutions
  ☆10Updated 6 months ago
• NUL0x4C / GP
  using the gpu to hide your payload
  ☆59Updated 2 years ago
• demon-i386 / cppngrok
  a cpp wrapper for ngrok
  ☆9Updated 4 years ago
• MatheuZSecurity / Infector
  This is a simple process injection made in C for Linux systems
  ☆26Updated last year
• keowu / Treinamento-Introducao-a-Engenharia-Reversa-no-Windows
  Conteúdo do treinamento/brainstorming Introdução a engenharia reversa no Windows feito com muito carinho por mim.
  ☆14Updated 2 years ago
• petikvx / vx-ezine
  Collection of ezine about virii
  ☆17Updated 2 years ago
• cocomelonc / 2022-07-21-malware-tricks-22
  Run payload like a Lazarus Group (UuidFromStringA). C++ implementation
  ☆20Updated 2 years ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆37Updated 10 months ago
• demon-i386 / zoshrinkC2
  DNS over HTTPS targeted malware (only runs once)
  ☆98Updated last year
• Silva97 / pei
  PE Injector - Inject code on 32-bit and 64-bit PE executables
  ☆33Updated 3 years ago
• filipi86 / httpdoom
  HttpDoom is a tool for response-based inspection of websites across a large amount of hosts for quickly gaining an overview of HTTP-base…
  ☆23Updated 3 years ago
• otterpwn / cppRecall
  Dump Microsoft Recall data and images
  ☆12Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated 7 months ago
• assume-breach / Malware_Project
  ☆33Updated 2 years ago
• rem0obb / intel-8080
  The Intel 8080 ("eighty-eighty") is the second 8-bit microprocessor designed and manufactured by Intel.
  ☆15Updated 3 years ago
• MatheuZSecurity / UnhookingLinuxEdr
  Attacking the cleanup_module function of a kernel module
  ☆36Updated 2 months ago
• brosck / Rebellion
  「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x
  ☆25Updated 2 months ago
• cocomelonc / hack-process-hacker2
  Proof of Concept example for abusing Process Hacker 2 (v2.39.124)
  ☆22Updated 7 months ago
• HACKE-RC / peritux
  A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.
  ☆18Updated 2 years ago
• lem0nSec / ASM_World
  Offensive Assembly code snippets.
  ☆12Updated last year
• nqntmqmqmb / xorPacker
  A simple packer working with all PE files which cipher your exe with a XOR implementation
  ☆14Updated 4 years ago