Alternatives and similar repositories for ward:

Users that are interested in ward are comparing it to the libraries listed below

• SilentVoid13 / Silent_Packer
  An ELF / PE binary packer written in pure C, made for fun
  ☆87Updated last year
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆40Updated last year
• 3intermute / hvICE
  hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer
  ☆31Updated last year
• ulexec / SHELF-Loading
  Evasive ELF Static PIE User-Land-Exec featured in Tmpout Vol 1.
  ☆26Updated 3 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆85Updated last year
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆56Updated 4 years ago
• kryptoslogic / binja_degobfuscate
  Fix Go obfuscated binaries that were obfuscated using gobfuscator
  ☆47Updated 3 years ago
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆71Updated 5 years ago
• 0xbigshaq / runtime-unpack
  Load a statically-linked ELF binary(x86 architecture) without the execve syscall.
  ☆42Updated 4 years ago
• mandiant / siglib
  ☆26Updated 3 years ago
• jeperez / WinREPL
  x86 and x64 assembly "read-eval-print loop" for Windows
  ☆29Updated 7 years ago
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆41Updated 3 years ago
• milabs / kjector
  Code injection from Linux kernel to a process
  ☆20Updated last year
• samrussell / obfus
  Playing with LLVM passes
  ☆36Updated last year
• D4stiny / ExceptionOrientedProgramming
  Abusing exceptions for code execution.
  ☆110Updated 2 years ago
• milabs / kopycat
  Linux Kernel module-less implant (backdoor)
  ☆72Updated 4 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆46Updated 3 months ago
• Invoke-RE / ungarble_bn
  Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project
  ☆16Updated last month
• therealdreg / nasm_linux_x86_64_pure_sharedlib
  NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection
  ☆29Updated last year
• bluedragonsecurity / bds_lkm_ftrace
  Ftrace Based Linux Loadable Kernel Module Rootkit for Linux Kernel 5.x and 6.x on x86_64, hides files, hides process, hides bind shell & …
  ☆17Updated last year
• nccgroup / ghostrings
  Ghidra scripts for recovering string definitions in Go binaries
  ☆110Updated 5 months ago
• glen-mac / ELF-Packer
  Simple Polymorphic x86_64 Runtime Code Segment Cryptor
  ☆57Updated 7 years ago
• ivision-research / gostringsr2
  Find strings in Go binaries
  ☆53Updated 5 years ago
• Binject / forger
  ☆20Updated 6 years ago
• ergrelet / cpplumber
  Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects
  ☆85Updated 2 years ago
• rivitna / emu_ida
  ☆15Updated 2 years ago
• elfmaster / linker_preloading_virus
  An example of hijacking the dynamic linker with a custom interpreter who loads and executes modular viruses
  ☆64Updated 3 years ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• zyantific / zydis-go
  Pure Go bindings for Zydis.
  ☆10Updated 9 months ago
• TakahiroHaruyama / SpiMitm
  SPI flash read MitM attack PoC
  ☆37Updated 2 years ago