Alternatives and similar repositories for x-ray-tls

Users that are interested in x-ray-tls are comparing it to the libraries listed below

• adava / CnCHunter
  This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
  ☆43Updated last year
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• t0-retooling / defender-recon24
  ☆58Updated last year
• yo-yo-yo-jbo / anti_debugging_intro
  ☆26Updated 2 years ago
• jeFF0Falltrades / rat_king_parser
  A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …
  ☆63Updated 5 months ago
• 0xcpu / winsmsd
  Windows (ShadowMove) Socket Duplication
  ☆87Updated 5 years ago
• eset / vulnerability-disclosures
  Repository of vulnerabilities disclosed by ESET
  ☆29Updated 3 years ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆17Updated 10 months ago
• dsnezhkov / elfpack
  ☆49Updated 3 years ago
• gkucherin / de4dot
  .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).
  ☆29Updated 3 years ago
• packgenome / PackGenome-Artifacts
  PackGenome: Automatically Generating Robust YARA Rules for Accurate Malware Packer Detection
  ☆27Updated 2 years ago
• FFRI / ShadeBIOS
  PoC code of Shade BIOS (stripped) presented at Black Hat USA 2025
  ☆60Updated 5 months ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• sominsong / NIMOS
  Analysis of syscall sequence pattern from exploit codes for advanced system call sequence filtering for enhanced container security
  ☆16Updated 2 years ago
• pwnlogs / d-time
  This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.
  ☆36Updated 4 years ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆62Updated 2 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• 7eRoM / elam
  A Practical example of ELAM (Early Launch Anti-Malware)
  ☆35Updated 4 years ago
• V3ded / Blog-Lab
  Source files for my posts
  ☆17Updated 2 years ago
• mez-0 / YaraEngine
  A C++ Yara Rule Runner
  ☆12Updated 3 years ago
• JanielDary / ELFieScanner
  A C++ tool for process memory scanning & suspicious telemetry generation that attempts to detect a number of malicious techniques used by…
  ☆85Updated last year
• anyrun / blog-scripts
  ☆34Updated last year
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆72Updated 3 months ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆58Updated 4 years ago
• splunk / PPLinject
  Inject unsigned DLL into Protected Process Light (PPL)
  ☆30Updated 7 months ago
• nasbench / SEDR-Internals
  Symantec EDR Internals
  ☆29Updated 4 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• hongson11698 / defender-database-extract
  defender_database
  ☆24Updated 2 years ago
• spcnvdr / xchacha20
  A small C library for the XChaCha20 stream cipher
  ☆38Updated 2 years ago
• CybercentreCanada / configextractor-py
  Python Library for ConfigExtractor
  ☆13Updated last month