Alternatives and similar repositories for Detect-It-Easy

Users that are interested in Detect-It-Easy are comparing it to the libraries listed below

• horsicq / DIE-engine
  DIE engine
  ☆2,648Updated this week
• x64dbg / ScyllaHide
  Advanced usermode anti-anti-debugger. Forked from https://bitbucket.org/NtQuery/scyllahide
  ☆3,704Updated last year
• onethawt / idaplugins-list
  A list of IDA Plugins
  ☆3,688Updated last year
• hasherezade / pe-bear
  Portable Executable reversing tool with a friendly GUI
  ☆3,114Updated last month
• winsiderss / systeminformer
  A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsid…
  ☆12,070Updated this week
• rizinorg / cutter
  Free and Open Source Reverse Engineering Platform powered by rizin
  ☆16,750Updated last week
• x64dbg / x64dbg
  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
  ☆46,181Updated last week
• mandiant / flare-floss
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,552Updated this week
• uxmal / reko
  Reko is a binary decompiler.
  ☆2,294Updated this week
• ReClassNET / ReClass.NET
  More than a ReClass port to the .NET platform.
  ☆1,956Updated last year
• alphaSeclab / awesome-reverse-engineering
  Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tool…
  ☆4,674Updated 3 years ago
• ayoubfaouzi / al-khaser
  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
  ☆6,329Updated last month
• bootleg / ret-sync
  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…
  ☆2,147Updated last year
• frida / frida
  Clone this repo to build Frida
  ☆17,759Updated this week
• hasherezade / pe-sieve
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,334Updated last week
• ExeinfoASL / ASL
  Free Windows Detector Software
  ☆899Updated last month
• TsudaKageyu / minhook
  The Minimalistic x86/x64 API Hooking Library for Windows
  ☆4,841Updated 2 weeks ago
• mrexodia / TitanHide
  Hiding kernel-driver for x86/x64.
  ☆2,350Updated this week
• joxeankoret / diaphora
  Diaphora, the most advanced Free and Open Source program diffing tool.
  ☆3,888Updated 6 months ago
• glmcdona / Process-Dump
  Windows tool for dumping malware PE files from memory back to disk for analysis.
  ☆1,748Updated 9 months ago
• HyperDbg / HyperDbg
  State-of-the-art native debugging tools
  ☆3,264Updated this week
• qilingframework / qiling
  A True Instrumentable Binary Emulation Framework
  ☆5,453Updated last month
• AxtMueller / Windows-Kernel-Explorer
  A free but powerful Windows kernel research tool.
  ☆2,537Updated 7 months ago
• petoolse / petools
  PE Tools - Portable executable (PE) manipulation toolkit
  ☆1,104Updated 7 years ago
• decompiler-explorer / decompiler-explorer
  Decompiler Explorer! Compare tools on the forefront of static analysis, now in your web browser!
  ☆2,367Updated this week
• microsoft / Detours
  Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
  ☆5,712Updated 2 months ago
• lief-project / LIEF
  LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
  ☆4,875Updated last week
• can1357 / NoVmp
  A static devirtualizer for VMProtect x64 3.x. powered by VTIL.
  ☆2,016Updated 3 years ago
• extremecoders-re / pyinstxtractor
  PyInstaller Extractor
  ☆3,456Updated 3 months ago
• keystone-engine / keypatch
  Multi-architecture assembler for IDA Pro. Powered by Keystone Engine.
  ☆1,648Updated 9 months ago