Alternatives and similar repositories for Tools

Users that are interested in Tools are comparing it to the libraries listed below

• CheckPointSW / InviZzzible
  InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…
  ☆582Updated 3 years ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆145Updated last week
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆220Updated 3 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆262Updated 2 years ago
• conix-security / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆368Updated 10 years ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆349Updated 7 months ago
• nazywam / AutoIt-Ripper
  Extract AutoIt scripts embedded in PE binaries
  ☆216Updated last year
• marcosd4h / memhunter
  Live hunting of code injection techniques
  ☆385Updated 6 years ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆796Updated 4 months ago
• thalium / icebox
  Virtual Machine Introspection, Tracing & Debugging
  ☆595Updated 3 years ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆521Updated 5 months ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆219Updated 4 years ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆285Updated last year
• hfiref0x / VMDE
  Source from VMDE paper, adapted to 2015
  ☆189Updated 8 years ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆167Updated 3 years ago
• therealdreg / DbgChild
  Debug Child Process Tool (auto attach)
  ☆321Updated 2 years ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆180Updated 2 years ago
• OALabs / hashdb-ida
  HashDB API hash lookup plugin for IDA Pro
  ☆348Updated 3 months ago
• D4stiny / PeaceMaker
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆431Updated 5 years ago
• jdu2600 / Windows10EtwEvents
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆329Updated last year
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆157Updated last year
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆369Updated 4 months ago
• nsmfoo / antivmdetection
  Script to create templates to use with VirtualBox to make vm detection harder
  ☆769Updated 3 years ago
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆128Updated 4 years ago
• pan-unit42 / dotnetfile
  ☆113Updated 4 months ago
• eclypsium / Screwed-Drivers
  "Screwed Drivers" centralized information source for code references, links, etc.
  ☆372Updated 5 years ago
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆378Updated last week
• marcosd4h / sysmonx
  SysmonX - An Augmented Drop-In Replacement of Sysmon
  ☆216Updated 6 years ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆685Updated last week
• hyuunnn / Hyara
  Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
  ☆242Updated last year