Alternatives and similar repositories for windows-defender

Users that are interested in windows-defender are comparing it to the libraries listed below

• mattifestation / PoCSubjectInterfacePackage
  A proof-of-concept subject interface package (SIP) used to demonstrate digital signature subversion attacks.
  ☆99Updated 7 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 5 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• scottlundgren / w32time
  ☆53Updated 6 years ago
• theflakes / Evil_DLL
  Simple DLL to test various injection methods.
  ☆51Updated 4 years ago
• SafeBreach-Labs / Spooler
  ☆62Updated 5 years ago
• 3gstudent / Use-COM-objects-to-bypass-UAC
  ☆92Updated 4 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 6 years ago
• nccgroup / WindowsDACLEnumProject
  A collection of tools to enumerate and analyse Windows DACLs
  ☆109Updated 10 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 8 months ago
• irsl / CVE-2020-0728
  Proof of Concept code for CVE-2020-0728
  ☆46Updated 5 years ago
• OsandaMalith / WindowsInternals
  Experiments on the Windows Internals
  ☆30Updated 5 years ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆93Updated 6 years ago
• EyeOfRa / WinConMon
  Windows Console Monitoring
  ☆100Updated 7 years ago
• michaelbadichi / RunAsSystem
  ☆33Updated 10 years ago
• CptGibbon / Windows-Process-Injection
  Some simple process injection techniques targeting the Windows platform
  ☆31Updated 5 years ago
• sevagas / WindowsDefender_ASR_Bypass-OffensiveCon2019
  Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.
  ☆95Updated 6 years ago
• djhohnstein / ProcessReimaging
  Process reimaging proof of concept code
  ☆96Updated 6 years ago
• papadp / reflective-injection-detection
  a program to detect reflective dll injection on a live machine
  ☆74Updated 9 years ago
• 3gstudent / PasswordFilter
  2 ways of Password Filter DLL to record the plaintext password
  ☆64Updated 4 years ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 7 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• ThunderGunExpress / Reflective_PSExec
  ☆45Updated 7 years ago
• t57root / amcsh
  A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.
  ☆30Updated 12 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆138Updated 8 years ago