Alternatives and similar repositories for ward

Users that are interested in ward are comparing it to the libraries listed below

• guitmz / memrun
  Small tool to run ELF binaries from memory with a given process name
  ☆170Updated 4 years ago
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆158Updated 2 years ago
• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆104Updated last year
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆50Updated 2 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆24Updated 2 years ago
• melotic / rekk
  rekk is set of tools written in Rust to obfuscate ELF & PE executables with nanomites.
  ☆31Updated last year
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆45Updated 5 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆48Updated last month
• namazso / linux_injector
  A simple ptrace-less shared library injector for x64 Linux
  ☆278Updated 2 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆92Updated 2 years ago
• GunshipPenguin / kiteshield
  Packer/Protector for x86-64 ELF binaries on Linux
  ☆185Updated 4 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆66Updated 3 years ago
• h311d1n3r / HellTracer
  A Linux x86/x86-64 tool to trace registers and memory regions.
  ☆40Updated 3 years ago
• kryptoslogic / binja_degobfuscate
  Fix Go obfuscated binaries that were obfuscated using gobfuscator
  ☆50Updated 4 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆74Updated 4 years ago
• elfmaster / maya
  Highly advanced Linux anti-exploitation and anti-tamper binary protector for ELF.
  ☆159Updated 3 years ago
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆113Updated 2 years ago
• zyantific / zydis-go
  Pure Go bindings for Zydis.
  ☆13Updated last year
• lem0nSec / Alcatraz
  An example of Windows self-replicating malware.
  ☆11Updated 2 years ago
• RITRedteam / goofkit
  In line function hooking LKM rootkit
  ☆52Updated 5 years ago
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆66Updated last year
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆86Updated 3 years ago
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆31Updated 2 years ago
• sha0coder / mwemu
  x86 malware emulator
  ☆254Updated this week
• sad0p / d0zer
  Elf binary infector written in Go.
  ☆212Updated 11 months ago
• turekt / knockknockgo
  Pure Go rewrite of knockknock
  ☆11Updated 2 years ago
• saferwall / elf
  Go library to parse Executable and Linkable Format (ELF) files.
  ☆52Updated last year
• castaneai / hinako
  x86 WinAPI hook written in pure Go
  ☆50Updated 5 years ago
• p0dalirius / pyPDBdownload
  A Python script to download PDB files associated with a Portable Executable (PE)
  ☆124Updated 10 months ago
• ShellCode33 / VM-Detection
  Linux and Windows VMs evasion fully written in Go
  ☆39Updated last year