Alternatives and similar repositories for windows-defender

Users that are interested in windows-defender are comparing it to the libraries listed below

• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 4 years ago
• MITRECND / picaboo
  Specialized tool to dump Position Independent Code.
  ☆22Updated 4 years ago
• CptGibbon / Windows-Process-Injection
  Some simple process injection techniques targeting the Windows platform
  ☆31Updated 5 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• eset / vulnerability-disclosures
  Repository of vulnerabilities disclosed by ESET
  ☆28Updated 2 years ago
• hasherezade / libpeconv_tpl
  A ready-made template for a project based on libpeconv.
  ☆48Updated 4 months ago
• malice-plugins / office
  Malice Office/OLE/RTF Plugin
  ☆13Updated 6 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• Velocidex / go-pe
  A Portable Executable parser for Golang
  ☆47Updated 5 months ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• EgeBalci / MapPE
  PE file mapping and manipulation package.
  ☆36Updated 3 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 6 years ago
• golang-devops / go-psexec
  The plan is to have a replacement for psexec
  ☆31Updated 6 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 2 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 5 years ago
• Velocidex / oleparse
  Golang parser for OLE files
  ☆32Updated 3 months ago
• DamonMohammadbagher / ETWNetMonv3
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆40Updated 2 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• NtRaiseHardError / Sysmon
  Sysmon shenanigans
  ☆65Updated 4 years ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• idiom / activemime-format
  ActiveMime File Format Documentation
  ☆18Updated 4 years ago
• dsnezhkov / exclave
  ☆16Updated 4 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• SecurityRiskAdvisors / PDBlaster
  ☆47Updated 5 years ago
• mandiant / vivisect
  pure Python binary analysis framework
  ☆23Updated 6 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆49Updated 5 years ago
• airbus-cert / PSTrace
  Trace ScriptBlock execution for powershell v2
  ☆40Updated 5 years ago