Alternatives and similar repositories for bootloaders:

Users that are interested in bootloaders are comparing it to the libraries listed below

• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• FarghlyMal / Config-Extractors
  ☆26Updated 4 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆50Updated this week
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆24Updated 8 months ago
• binarly-io / ToolsAndPoCs
  BINARLY Research Tools and PoCs
  ☆36Updated 6 months ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 6 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated 11 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆39Updated last year
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆46Updated 3 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆75Updated last year
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆34Updated this week
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• matthw / malware_analysis
  ☆18Updated last year
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆51Updated 3 weeks ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆15Updated 3 months ago
• anyrun / blog-scripts
  ☆27Updated 4 months ago
• NorthwaveSecurity / lilo-pulse-secure-decrypt
  LILO based Pulse Secure appliance disk image decryptor
  ☆12Updated last year
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆67Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆96Updated 11 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆46Updated 2 months ago
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆52Updated 3 months ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• SIFalcon / Detection
  ☆22Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆47Updated this week