Alternatives and similar repositories for tools

Users that are interested in tools are comparing it to the libraries listed below

• Malandrone / PowerDecode
  PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…
  ☆199Updated last year
• d4rksystem / VBoxCloak
  A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …
  ☆305Updated last month
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆183Updated 2 years ago
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆191Updated this week
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆170Updated 4 months ago
• gtworek / VolatileDataCollector
  ☆204Updated 9 months ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆144Updated last week
• Mr-Un1k0d3r / ATP-PowerShell-Scripts
  Microsoft Signed PowerShell scripts
  ☆216Updated 2 years ago
• izenynn / c-reverse-shell
  A reverse shell for Windows and Linux written in C.
  ☆79Updated 3 years ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated 2 years ago
• 7etsuo / win32-shellcode
  Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers
  ☆59Updated 11 months ago
• d4rksystem / VMwareCloak
  A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…
  ☆375Updated 6 months ago
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆247Updated 4 months ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆215Updated 2 years ago
• LOLAPPS-Project / LOLAPPS
  LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.
  ☆189Updated 5 months ago
• dobin / avred
  Analyse your malware to surgically obfuscate it
  ☆490Updated 2 months ago
• gh0x0st / Invoke-PSObfuscation
  An in-depth approach to obfuscating the individual components of a PowerShell payload whether you're on Windows or Kali Linux.
  ☆275Updated 3 years ago
• cocomelonc / peekaboo
  Simple undetectable shellcode and code injector launcher example. Inspired by RTO malware development course.
  ☆252Updated 9 months ago
• sinfulz / JustEvadeBro
  JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
  ☆310Updated 11 months ago
• PhrozenIO / DLest
  Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
  ☆230Updated last year
• ashemery / malware-tools
  A list of useful tools for Malware Analysis (will be updated regularly)
  ☆143Updated last week
• vu-ls / Crassus
  ☆582Updated 2 months ago
• 4n0nym0us / 4n4lDetector
  Advanced static analysis tool
  ☆97Updated 2 months ago
• SafeBreach-Labs / wd-pretender
  ☆133Updated 2 years ago
• FourCoreLabs / LolDriverScan
  Scan vulnerable drivers on Windows with loldrivers.io
  ☆182Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆67Updated 6 months ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆158Updated last year
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆161Updated last year
• dodo-sec / Malware-Analysis
  ☆136Updated 2 years ago
• carlospolop / autoVolatility
  Run several volatility plugins at the same time
  ☆114Updated 2 years ago