Alternatives and similar repositories for reverse-engineering-for-beginners:

Users that are interested in reverse-engineering-for-beginners are comparing it to the libraries listed below

• aaaddress1 / wowGrail
  PoC: Rebuild A New Path Back to the Heaven's Gate (HITB 2021)
  ☆104Updated 3 years ago
• CheckPointSW / Anti-Debug-DB
  Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of v…
  ☆54Updated last year
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆220Updated last year
• alexander-hanel / IDAGolangHelper
  Set of IDA Pro scripts for parsing GoLang types information stored in compiled binary
  ☆15Updated 4 years ago
• zeze-zeze / CYBERSEC2023-BYOVD-Demo
  ☆29Updated last year
• Cerbersec / HDE64
  Hacker Disassembler Engine 64 Copyright (c) 2008-2009, Vyacheslav Patkov. * All rights reserved.
  ☆49Updated 3 years ago
• Hipepper / antiVM
  Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.
  ☆41Updated 2 years ago
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆87Updated 2 years ago
• vmallet / ida-hex-highlighter
  Hex-Rays Block Highlighter plugin for IDA to highlight if/for/do/switch/while blocks
  ☆61Updated 3 years ago
• kweatherman / ida_missinglink
  IDA Plugin that fills in missing indirect CALL & JMP target information
  ☆123Updated 3 months ago
• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆151Updated last year
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆91Updated 6 years ago
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆60Updated 7 months ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆63Updated last year
• therealdreg / ida_bochs_windows
  Helper script for Windows kernel debugging with IDA Pro on native Bochs debugger (including PDB symbols)
  ☆62Updated last year
• jdu2600 / CFG-FindHiddenShellcode
  Walks the CFG bitmap to find previously executable but currently hidden shellcode regions
  ☆115Updated last year
• zeze-zeze / WindowsKernelVuln
  ☆51Updated last year
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Updated 4 years ago
• eset / DelphiHelper
  DelphiHelper is a python IDA Pro plugin aiming to help the analysis of x86/x86_64 binaries written in Delphi programming language.
  ☆91Updated 2 weeks ago
• loneicewolf / KernelMode-Code
  2022 Updated Kernelmode-Code
  ☆31Updated last year
• thalium / ida_kmdf
  ☆73Updated last month
• alal4465 / KernelMon
  A ProcMon-esque tool for monitoring Windows Kernel Drivers
  ☆57Updated 3 years ago
• david-lazar / IDAPatternSearch
  IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…
  ☆63Updated 3 years ago
• jeperez / WinREPL
  x86 and x64 assembly "read-eval-print loop" for Windows
  ☆29Updated 7 years ago
• VMProtectResearch / vmp2-devirtualization
  vmp2.x devirtualization
  ☆73Updated 5 months ago
• therealdreg / cgaty
  Hooking the GDT - Installing a Call Gate. POC for Rootkit Arsenal Book Second Edition (version 2022)
  ☆72Updated last year
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 2 years ago
• aaaddress1 / theArk
  Windows x86 PE Packer In C++
  ☆52Updated 5 years ago
• endofunky / ida-nord-theme
  A dark Nord theme port for Hex Rays IDA
  ☆102Updated 2 years ago
• garzon / obfacros
  obfacros - a set of C++ macros that can be used to obfuscate your c/c++ code, to make executables harder for reverse-engineering.
  ☆47Updated 5 years ago