hasherezade/malware_training_vol1 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hasherezade/malware_training_vol1

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hasherezade/malware_training_vol1)

Close

hasherezade / malware_training_vol1View on GitHubMore

• External links
• Readme badge

Materials for Windows Malware Analysis training (volume 1)

☆2,028Jul 1, 2024Updated last year

Alternatives and similar repositories for malware_training_vol1

Users that are interested in malware_training_vol1 are comparing it to the libraries listed below

• hasherezade / pe-sieve

  View on GitHub
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,562Oct 31, 2025Updated 4 months ago
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,314Oct 31, 2025Updated 4 months ago
• Dump-GUY / Malware-analysis-and-Reverse-engineering

  View on GitHub
  Some of my publicly available Malware analysis and Reverse engineering.
  ☆936Jun 3, 2024Updated last year
• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,547Jan 20, 2026Updated last month
• FULLSHADE / WindowsExploitationResources

  View on GitHub
  Resources for Windows exploit development
  ☆1,649Dec 20, 2021Updated 4 years ago
• hasherezade / transacted_hollowing

  View on GitHub
  Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
  ☆580Mar 8, 2024Updated last year
• ethereal-vx / Antivirus-Artifacts

  View on GitHub
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆754Nov 16, 2021Updated 4 years ago
• mandiant / speakeasy

  View on GitHub
  Windows kernel and user mode emulation.
  ☆1,860Feb 27, 2026Updated last week
• Mr-Un1k0d3r / EDRs

  View on GitHub
  ☆2,168Feb 21, 2023Updated 3 years ago
• mentebinaria / retoolkit

  View on GitHub
  Reverse Engineer's Toolkit
  ☆5,172May 1, 2025Updated 10 months ago
• jstrosch / malware-samples

  View on GitHub
  Malware samples, analysis exercises and other interesting resources.
  ☆1,614Jan 13, 2024Updated 2 years ago
• hasherezade / tiny_tracer

  View on GitHub
  A Pin Tool for tracing API calls etc
  ☆1,625Feb 8, 2026Updated 3 weeks ago
• phra / PEzor

  View on GitHub
  Open-Source Shellcode & PE Packer
  ☆2,069Feb 3, 2024Updated 2 years ago
• malrev / ABD

  View on GitHub
  Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
  ☆1,161Nov 14, 2020Updated 5 years ago
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆5,844Feb 27, 2026Updated last week
• jthuraisamy / SysWhispers2

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,795Sep 3, 2022Updated 3 years ago
• hasherezade / mal_unpack

  View on GitHub
  Dynamic unpacker based on PE-sieve
  ☆799Sep 13, 2025Updated 5 months ago
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,874Aug 18, 2023Updated 2 years ago
• ayoubfaouzi / al-khaser

  View on GitHub
  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
  ☆6,868Updated this week
• jthuraisamy / SysWhispers

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,990Jan 1, 2023Updated 3 years ago
• hasherezade / process_ghosting

  View on GitHub
  Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…
  ☆684Mar 11, 2024Updated last year
• hasherezade / pe_to_shellcode

  View on GitHub
  Converts PE into a shellcode
  ☆2,747Aug 30, 2025Updated 6 months ago
• mytechnotalent / Reverse-Engineering

  View on GitHub
  A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit/64-bit ARM, 8-bit AVR and 32-bit RISC-V architectures.
  ☆13,287Feb 27, 2026Updated last week
• bats3c / shad0w

  View on GitHub
  A post exploitation framework designed to operate covertly on heavily monitored environments
  ☆2,168Sep 29, 2021Updated 4 years ago
• MichaelKoczwara / Awesome-CobaltStrike-Defence

  View on GitHub
  Defences against Cobalt Strike
  ☆1,296Jul 14, 2022Updated 3 years ago
• mandiant / flare-vm

  View on GitHub
  A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…
  ☆8,396Dec 23, 2025Updated 2 months ago
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,909Feb 23, 2026Updated last week
• ashemery / exploitation-course

  View on GitHub
  Offensive Software Exploitation Course
  ☆2,393May 31, 2023Updated 2 years ago
• OpenRCE / Malware-Analysis-Training

  View on GitHub
  Retired beginner/intermediate malware analysis training materials from @pedramamini and @erocarrera.
  ☆904Feb 25, 2020Updated 6 years ago
• jxy-s / herpaderping

  View on GitHub
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆1,183Jul 5, 2023Updated 2 years ago
• vxunderground / VXUG-Papers

  View on GitHub
  Research code & papers from members of vx-underground.
  ☆1,352Dec 7, 2021Updated 4 years ago
• gtworek / PSBits

  View on GitHub
  Simple (relatively) things allowing you to dig a bit deeper than usual.
  ☆3,483Feb 16, 2026Updated 2 weeks ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,517Jan 24, 2023Updated 3 years ago
• CERT-Polska / drakvuf-sandbox

  View on GitHub
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,269Updated this week
• mantvydasb / RedTeaming-Tactics-and-Techniques

  View on GitHub
  Red Teaming Tactics and Techniques
  ☆4,495Aug 22, 2024Updated last year
• d35ha / CallObfuscator

  View on GitHub
  Obfuscate specific windows apis with different apis
  ☆1,023Feb 21, 2021Updated 5 years ago
• Cracked5pider / KaynLdr

  View on GitHub
  KaynLdr is a Reflective Loader written in C/ASM
  ☆555Dec 3, 2023Updated 2 years ago
• forrest-orr / moneta

  View on GitHub
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆807Mar 16, 2024Updated last year
• 0x4143 / malware-gems

  View on GitHub
  A not so awesome list of malware gems for aspiring malware analysts
  ☆828Feb 7, 2023Updated 3 years ago