Alternatives and similar repositories for SpyAI

Users that are interested in SpyAI are comparing it to the libraries listed below

• x86byte / Stuxnet-Rootkit
  Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis
  ☆64Updated 10 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆57Updated last year
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆27Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆30Updated last month
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆62Updated 2 months ago
• aaaddress1 / ntkrnlProtectScan
  One Click Tool to Scan All the Enabled Protection of current Windows NT Kernel
  ☆43Updated last year
• FuzzySecurity / Magikarp
  ECC Public Key Cryptography
  ☆39Updated last year
• EvilBytecode / EvilByte-Remote-AMSI-Bypass
  Bypasses AMSI protection through remote memory patching and parsing technique.
  ☆48Updated 2 months ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆28Updated 4 months ago
• imperva / frida-jit-unpacker
  The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.
  ☆64Updated last year
• referefref / Rusty-Telephone
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆61Updated 8 months ago
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆55Updated 5 months ago
• gemini-security / GithubC2
  ☆29Updated last year
• therealdreg / okhi
  Open Keylogger Hardware Implant - USB & PS2 Keyboards
  ☆78Updated 2 months ago
• R41N3RZUF477 / CVE-2023-41772
  ☆12Updated last year
• AnastasiKro / ALPChecker
  ALPChecker - a tool to detect spoofing and blinding attacks on the ALPC interaction
  ☆13Updated 2 years ago
• Sh3lldon / WinPWN
  This repo for Windows x32-x64 Kernel/Driver/User Mode Exploitation writeups and exploits
  ☆25Updated last year
• shalomc / bhasia2025
  BlackHat Asia 2025 code and presentations
  ☆18Updated 3 months ago
• SaadAhla / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆76Updated 2 months ago
• EvilBytecode / PPID-Spoofing
  Parent Process ID Spoofing, coded in CGo.
  ☆23Updated 3 months ago
• Print3M / shellcodes
  My shellcodes (or shellcodish-things) written for educational purpose in NASM assembly.
  ☆40Updated last year
• mtimani / Muttley
  File Manager
  ☆12Updated last month
• hackerhouse-opensource / AESCrypt
  AES-256 Microsoft Cryptography API Example Use.
  ☆31Updated last year
• rbmm / TL-TASK
  ☆19Updated 2 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• nyxgeek / dirdevil
  hiding in plain sight: part 2
  ☆45Updated last year
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆42Updated last year
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆88Updated 2 months ago
• Tomiwa-Ot / py-amsi
  Scan strings or files for malware using the Windows Antimalware Scan Interface
  ☆30Updated 2 years ago
• xelemental / Mal-LNK-Generator
  ☆34Updated 4 months ago