Alternatives and similar repositories for Greenline:

Users that are interested in Greenline are comparing it to the libraries listed below

• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆25Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆18Updated last year
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆80Updated 2 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆73Updated last year
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆36Updated last year
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆34Updated last week
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆40Updated 10 months ago
• cyberark / malware-research
  ☆36Updated last month
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆26Updated 5 years ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆36Updated 7 months ago
• Dump-GUY / Get-UnJlaive
  Get-UnJlaive is tool which is able to reconstruct Jlaive (.NET Antivirus Evasion Tool (Exe2Bat)) to original Assembly and stub Assembly.
  ☆22Updated 2 years ago
• cocomelonc / 2022-06-05-malware-av-evasion-7
  Malware AV evasion via disable Windows Defender (Registry). C++
  ☆35Updated 2 years ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated last year
• dr4k0nia / XorStringsNET
  Easy XOR string encryption for NET based binaries
  ☆138Updated last year
• IntelBroker / Endurance-Wiper
  a small wiper malware programmed in c#
  ☆52Updated 2 years ago
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆30Updated 3 years ago
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆35Updated last year
• ZeroMemoryEx / SleepKiller
  Bypass Malware Time Delays
  ☆101Updated 2 years ago
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• pygrum / siphon
  A feed of malware samples curated from threat intelligence sources.
  ☆25Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated 2 years ago
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Updated 3 years ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆96Updated last week
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated 4 months ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated 2 years ago
• ZeroMemoryEx / URootkit
  simple user-mode Rootkit
  ☆103Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• gelven4sec / NotPetyaAgain
  PoC of a UEFI Petya ransomware
  ☆40Updated 2 years ago