Alternatives and similar repositories for nTimetools

Users that are interested in nTimetools are comparing it to the libraries listed below

• password123456 / CertVerify
  A scanner that files with compromised or untrusted code signing certificates written in python.
  ☆65Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆40Updated 4 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆41Updated 2 years ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 4 years ago
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆25Updated 4 months ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆37Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated 2 years ago
• MITRECND / picaboo
  Specialized tool to dump Position Independent Code.
  ☆22Updated 5 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 4 years ago
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• keydet89 / LNK
  Repository for LNK stuff
  ☆31Updated 3 years ago
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆50Updated 2 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 4 years ago
• Finch4 / Malware-Analysis-Reports
  My Malware Analysis Reports
  ☆24Updated 3 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• Maff1t / WindowsPermsPoC
  A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows
  ☆53Updated 4 years ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• trustedsec / tscopy
  ☆94Updated 3 months ago
• daddycocoaman / dumpscan
  Finding secrets in kernel and user memory
  ☆116Updated 2 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated 2 years ago
• 0xjxd / SquirrelWaffle-From-Maldoc-to-Cobalt-Strike
  ☆11Updated 4 years ago
• jonny-jhnson / LDAPMon
  ☆45Updated 2 years ago
• defensahacker / syn-file
  Exfiltrate data from a compromised target using covert channels
  ☆17Updated 4 years ago
• TarlogicSecurity / sepriv
  Tool to manage user privileges
  ☆31Updated 6 years ago
• nullsection / SharpETW-Patch
  ☆23Updated 2 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆42Updated 3 weeks ago
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆52Updated 11 years ago