Alternatives and similar repositories for win10_auto

Users that are interested in win10_auto are comparing it to the libraries listed below

• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• Tera0017 / SDBbot-Unpacker
  SDBbot Unpacker Python 2.7
  ☆9Updated 4 years ago
• DissectMalware / npp-langs-4-sec
  Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals
  ☆14Updated 5 years ago
• JaanusKaapPublic / Slides
  Will try to put here slides from now on when I give a talk
  ☆24Updated 3 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆28Updated last year
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 8 months ago
• sevagas / weaponize_process_injection_windows_SIGSEGv2_2019
  Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog
  ☆13Updated 5 years ago
• nccgroup / WindowsPatchDetector
  Experimental Windows .text section Patch Detector
  ☆21Updated 10 years ago
• mandiant / rvmi-kvm
  Linux-KVM with rVMI extensions
  ☆22Updated 7 years ago
• connormcgarr / Presentations
  ☆28Updated 7 months ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 2 years ago
• gavz / awesome-windows-exploitation
  ☆21Updated 4 years ago
• decoder-it / CreateTokenExample
  ☆17Updated 5 years ago
• DimopoulosElias / Primitives
  ☆31Updated 4 years ago
• smgorelik / CIGslip
  A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…
  ☆18Updated 7 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free
  ☆17Updated 4 years ago
• daevlin / Zero2Auto_homework
  Data from analysis of the custom sample from the chapter "Practical Analysis and Test"
  ☆12Updated 4 years ago
• re-fox / documentation
  ☆13Updated 4 years ago
• wetw0rk / CA-UIM-Nimbus-Research
  Vulnerability research on the CA UIM Nimbus protocol
  ☆15Updated 4 years ago
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆25Updated 3 months ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• 0xAlexei / Publications
  My conference presentations and publications
  ☆26Updated 3 years ago
• hasherezade / beardisasm
  A wrapper for capstone for bearparser
  ☆14Updated 2 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• RedyOpsResearchLabs / -CVE-2020-8103-Bitdefender-Antivirus-Free-EoP
  CVE-2020-8103 Link Resolution Privilege Escalation Vulnerability in Bitdefender Antivirus Free
  ☆15Updated 5 years ago
• NexusFuzzy / NanoDump
  Tool to decrypt the configuration of NanoCore and dump all used plugins
  ☆11Updated 4 years ago
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆33Updated 4 years ago