Alternatives and similar repositories for MalwareAnalysis:

Users that are interested in MalwareAnalysis are comparing it to the libraries listed below

• FarghlyMal / Config-Extractors
  ☆25Updated 3 months ago
• matthw / malware_analysis
  ☆18Updated 11 months ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• X-Junior / Malware-IDAPython-Scripts
  ☆22Updated 9 months ago
• decoder-it / Troopers24
  ☆41Updated 8 months ago
• 3sjay / sploits
  some sploits
  ☆17Updated 5 months ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• Hagrid29 / CVE-2024-2432-PaloAlto-GlobalProtect-EoP
  ☆58Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• StrikeReady-Inc / samples
  shared samples from #dailyphish and/or #apt tweets
  ☆37Updated 2 months ago
• SafeBreach-Labs / CortexVortex
  ☆75Updated 10 months ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• antonioCoco / infosec-talks
  ☆48Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated last year
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated 11 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆51Updated last year
• LOFL-Project / LOFLCAB
  ☆51Updated 3 months ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆60Updated last year
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated last year
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• errbody / DPRK-Research
  ☆34Updated 2 weeks ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆39Updated last year
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆19Updated 10 months ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated last year
• jaredcatkinson / MalwareMorphology
  ☆80Updated 3 months ago
• hyp3rlinx / PSTrojanFile
  Unfixed Windows PowerShell Filename Code Execution POC
  ☆41Updated last year
• cod3nym / Deobfuscar
  A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
  ☆39Updated 8 months ago
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆53Updated 2 years ago