Alternatives and similar repositories for crypto_utils

Users that are interested in crypto_utils are comparing it to the libraries listed below

• secretsquirrel / recomposer
  Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.
  ☆131Updated 11 years ago
• HexHive / malWASH
  ☆115Updated 9 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆77Updated 10 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆106Updated 7 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆98Updated 4 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆73Updated 9 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• CyberPoint / Ruxcon2016ETW
  Ruxcon2016 POC Code
  ☆140Updated 8 years ago
• rrbranco / blackhat2012
  Blackhat 2012 Sample Codes
  ☆93Updated 9 years ago
• muffins / rookit_playground
  Educational repository for learning about rootkits and Windows Kernel Hooks.
  ☆49Updated 10 years ago
• hasherezade / decryptors_archive
  Archive of ransomware decryptors
  ☆31Updated 7 years ago
• evil-e / sdb-explorer
  Tool to view and create Microsoft shim database files (SDB).
  ☆115Updated 8 years ago
• m0n0ph1 / Basic-File-Crypter
  Process Hollowing techniques as used in many file Crypters (C/C++)
  ☆84Updated 4 years ago
• atxsinn3r / amsiscanner
  A C/C++ implementation of Microsoft's Antimalware Scan Interface
  ☆182Updated 7 years ago
• hatRiot / bugs
  public bugs/proof of concepts
  ☆50Updated 4 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆138Updated 8 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆118Updated 8 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆152Updated 2 years ago
• AmrThabet / winSRDF
  Security Research and Development Framework
  ☆106Updated 9 years ago
• papadp / reflective-injection-detection
  a program to detect reflective dll injection on a live machine
  ☆74Updated 9 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆52Updated 7 years ago
• BreakingMalwareResearch / Captain-Hook
  ☆52Updated 9 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆145Updated 10 years ago
• hasherezade / ViDi
  ViDi Visual Disassembler (experimental)
  ☆77Updated 2 years ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆121Updated 6 years ago
• williamshowalter / hdroot-bootkit-analysis
  Supporting Files on my analysis of the malware designated hdroot.
  ☆59Updated 8 years ago
• nyx0 / KINS
  KINS Banking Trojan
  ☆63Updated 10 years ago
• MortenSchenk / Token-Stealing-Shellcode
  ☆53Updated 8 years ago
• hasherezade / persistence_demos
  Demos of various (also non standard) persistence methods used by malware
  ☆223Updated 2 years ago