Alternatives and similar repositories for ward

Users that are interested in ward are comparing it to the libraries listed below

• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆101Updated last year
• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆169Updated 4 years ago
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆157Updated last year
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆173Updated 4 years ago
• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆275Updated 2 years ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆45Updated 5 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• akamai / Linux-Process-Injection
  ☆77Updated 11 months ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆30Updated 2 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆113Updated 2 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆91Updated 2 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆24Updated 2 years ago
• sad0p / d0zer
  Elf binary infector written in Go.
  ☆211Updated 9 months ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆67Updated 3 years ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆11Updated 2 years ago
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆66Updated last year
• Binject / debug
  Fork of pkg/debug that adds some additional functionality.
  ☆127Updated last year
• Binject / forger
  ☆20Updated 6 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 3 weeks ago
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆48Updated 2 years ago
• zyantific / zydis-go
  Pure Go bindings for Zydis.
  ☆12Updated last year
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆28Updated 4 years ago
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆86Updated 3 years ago
• lem0nSec / Alcatraz
  An example of Windows self-replicating malware.
  ☆11Updated 2 years ago
• enkomio / thematrix
  a PE Loader and Windows API tracer. Useful in malware analysis.
  ☆143Updated 3 years ago
• dsnezhkov / elfpack
  ☆48Updated 3 years ago
• melotic / rekk
  rekk is set of tools written in Rust to obfuscate ELF & PE executables with nanomites.
  ☆31Updated 10 months ago
• mandiant / poisonplug-scatterbrain
  Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
  ☆64Updated 7 months ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆71Updated last year
• ShellCode33 / VM-Detection
  Linux and Windows VMs evasion fully written in Go
  ☆39Updated last year