kaganisildak / malwarescarecrow

Related projects ⓘ

Alternatives and complementary repositories for malwarescarecrow

• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆657Updated 8 months ago
• cfalta / MicrosoftWontFixList
  A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. T…
  ☆938Updated 3 years ago
• binref / refinery
  High Octane Triage Analysis
  ☆663Updated this week
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆538Updated last week
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆390Updated 11 months ago
• magicsword-io / LOLDrivers
  Living Off The Land Drivers
  ☆1,030Updated last month
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆328Updated 2 weeks ago
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆392Updated 2 weeks ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆318Updated 4 months ago
• persistence-info / persistence-info.github.io
  ☆467Updated 10 months ago
• cyberark / PipeViewer
  A tool that shows detailed information about named pipes in Windows
  ☆566Updated 3 months ago
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,058Updated 2 weeks ago
• commial / experiments
  Expriments
  ☆439Updated last month
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆571Updated 6 months ago
• d4rksystem / VBoxCloak
  A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …
  ☆277Updated last year
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆340Updated this week
• lasq88 / LearingMaterials
  Different learning materials
  ☆215Updated 2 months ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆131Updated 2 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆141Updated 9 months ago
• airbus-cert / Winshark
  A wireshark plugin to instrument ETW
  ☆535Updated 2 years ago
• Velocidex / WinPmem
  The multi-platform memory acquisition tool.
  ☆690Updated 4 months ago
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆239Updated last year
• GossiTheDog / SystemNightmare
  Gives you instant SYSTEM command prompt on all supported and legacy versions of Windows
  ☆377Updated 3 years ago
• ethereal-vx / Antivirus-Artifacts
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆725Updated 2 years ago
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆372Updated this week
• winterknife / PINKPANTHER
  Windows x64 handcrafted token stealing kernel-mode shellcode
  ☆503Updated 6 months ago
• evild3ad / MemProcFS-Analyzer
  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
  ☆536Updated 2 weeks ago
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆234Updated last year
• D4stiny / PeaceMaker
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆416Updated 4 years ago
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆684Updated 7 months ago