Alternatives and similar repositories for writeups:

Users that are interested in writeups are comparing it to the libraries listed below

• mrphrazer / hitb2021ams_deobfuscation
  ☆72Updated 3 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆39Updated 5 years ago
• v-p-b / WindowsDefenderTools
  Tools for instrumenting Windows Defender's mpengine.dll
  ☆36Updated 6 years ago
• niklasb / elgoog
  elgoog/searchme challenge from 34C3 CTF / WCTF 2018: sources & exploit
  ☆67Updated 6 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 3 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆89Updated 5 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago
• Dump-GUY / ghidra_scripts
  ☆67Updated last year
• saaramar / 35C3_Modern_Windows_Userspace_Exploitation
  ☆152Updated 6 years ago
• andreafioraldi / pwntrace
  Use ltrace with pwnlib.tubes.process instances, useful for heap exploitation. Pwntools rocks!
  ☆52Updated 6 years ago
• GoSecure / advanced-binary-analysis
  Materials for the Binary Analysis Workshop presented at NorthSec 2020
  ☆66Updated 3 years ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆72Updated 2 years ago
• interruptlabs / heimdallr-ida
  A IDA plugin to enable linking to locations in an IDB with a disas:// URI
  ☆32Updated last year
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 6 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆107Updated 5 years ago
• yrp604 / bdump
  ☆47Updated 2 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆42Updated last year
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆59Updated 4 years ago
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆97Updated 4 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆53Updated 4 years ago
• peleghd / Windows-10-Exploitation
  ☆134Updated 5 years ago
• nneonneo / sstic-2021
  Files for my solution to the SSTIC 2021 challenge
  ☆15Updated 3 years ago
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆104Updated 4 years ago
• saaramar / Publications
  ☆83Updated last year
• TheRomanXpl0it / binary-exploitation-intro
  A gentle introduction to binary exploitation
  ☆41Updated 4 years ago
• sgabe / winaflpet
  Web user interface and service agent for the monitoring and remote management of WinAFL.
  ☆51Updated last month
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆119Updated 4 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 4 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆93Updated 3 years ago