Alternatives and similar repositories for x-ray-tls

Users that are interested in x-ray-tls are comparing it to the libraries listed below

• adava / CnCHunter
  This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
  ☆41Updated last year
• t0-retooling / defender-recon24
  ☆54Updated last year
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆95Updated 2 years ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆17Updated 9 months ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆62Updated 2 years ago
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• pwnlogs / d-time
  This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.
  ☆35Updated 4 years ago
• packgenome / PackGenome-Artifacts
  PackGenome: Automatically Generating Robust YARA Rules for Accurate Malware Packer Detection
  ☆27Updated last year
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆59Updated 3 months ago
• dsnezhkov / elfpack
  ☆48Updated 3 years ago
• ucsb-seclab / popkorn-artifact
  ☆83Updated 2 months ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• 0xcpu / winsmsd
  Windows (ShadowMove) Socket Duplication
  ☆87Updated 5 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆71Updated last year
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆58Updated 4 years ago
• roadwy / SIGNATURE_TYPE_LUASTANDALONE
  Extracted lua script from Defender mpavbase.vdm and mpasbase.vdm
  ☆16Updated last year
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆72Updated last month
• jeFF0Falltrades / rat_king_parser
  A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …
  ☆56Updated 3 months ago
• uf0o / Counterfeit_Object_Oriented_Programming_COOP
  ☆14Updated last year
• nasbench / SEDR-Internals
  Symantec EDR Internals
  ☆28Updated 4 years ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆120Updated last year
• FFRI / orom-backdoor-research
  PoC code and tools for Black Hat USA 2024
  ☆24Updated last year
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆53Updated 7 months ago
• JPCERTCC / AutoYara4FLIRT
  ☆16Updated last year
• marcusbotacin / Dropper
  Embed an executable as a PE resource, drops and launches it in runtime.
  ☆64Updated 4 years ago
• c3rb3ru5d3d53c / peexports
  A Multi-Threaded PE Export Collection Utility
  ☆14Updated 2 years ago
• SEVulDet / SEVulDet
  A Semantics-Enhanced Learnable Vulnerability Detector
  ☆42Updated 3 years ago
• anyrun / blog-scripts
  ☆33Updated 11 months ago