Alternatives and similar repositories for kovterTools

Users that are interested in kovterTools are comparing it to the libraries listed below

• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 4 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• paranoidninja / 0xdarkvortex-Reverse-Engineering
  This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja
  ☆46Updated 4 years ago
• Simon-AKA-Subliminal / Identify-Malicious-Internet-Users-Using-Tor
  ☆10Updated 8 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 5 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated last year
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆46Updated 8 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆16Updated last year
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 3 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆8Updated 5 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 7 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 8 years ago
• sysopfb / open_mal_analysis_notes
  open source malware analysis and research notes dump
  ☆26Updated last year
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆29Updated 6 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆59Updated 6 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆43Updated 4 years ago
• DissectMalware / npp-langs-4-sec
  Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals
  ☆14Updated 5 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• cysinfo / API-Tracker
  API Tracker by Cysinfo Team
  ☆22Updated 8 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 8 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆43Updated 10 months ago