Alternatives and similar repositories for windows-defender

Users that are interested in windows-defender are comparing it to the libraries listed below

• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 4 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 5 years ago
• aking1012 / dc20
  A slightly stripped down version of RID (an exercise in learning python C-Types...some of it is a little rushed/sloppy) and a stripped do…
  ☆51Updated 12 years ago
• malice-plugins / office
  Malice Office/OLE/RTF Plugin
  ☆13Updated 6 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆49Updated 4 months ago
• StrangerealIntel / Cerberus
  Sources code extracted from malwares for analysis
  ☆38Updated 2 years ago
• t57root / amcsh
  A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.
  ☆30Updated 12 years ago
• SafeBreach-Labs / Spooler
  ☆62Updated 4 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆49Updated 5 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 6 years ago
• matthewdunwoody / POSHSPY
  POSHSPY backdoor code
  ☆43Updated 8 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 5 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆50Updated 6 years ago
• Tera0017 / SDBbot-Unpacker
  SDBbot Unpacker Python 2.7
  ☆9Updated 5 years ago
• 0xeb-bp / cve-2020-1015
  PoC for CVE-2020-1015
  ☆40Updated 5 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• jthuraisamy / CVE-2019-9730
  Synaptics Audio Driver LPE
  ☆37Updated 6 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• you0708 / lznt1
  Python implementation of LZNT1 compression/decompression
  ☆65Updated 5 years ago
• msuiche / smbaloo
  ☆48Updated 5 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago