Alternatives and similar repositories for win10_auto

Users that are interested in win10_auto are comparing it to the libraries listed below

• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• Fmk0 / templates
  ☆36Updated 5 years ago
• mandiant / rvmi-kvm
  Linux-KVM with rVMI extensions
  ☆22Updated 7 years ago
• JaanusKaapPublic / Slides
  Will try to put here slides from now on when I give a talk
  ☆24Updated 3 years ago
• secrary / findLoop
  findLoop - find possible encryption/decryption or compression/decompression code
  ☆26Updated 6 years ago
• mgeeky / HEVD_Kernel_Exploit
  Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.
  ☆66Updated 3 years ago
• nccgroup / WindowsPatchDetector
  Experimental Windows .text section Patch Detector
  ☆21Updated 10 years ago
• daevlin / Zero2Auto_homework
  Data from analysis of the custom sample from the chapter "Practical Analysis and Test"
  ☆12Updated 5 years ago
• Tera0017 / SDBbot-Unpacker
  SDBbot Unpacker Python 2.7
  ☆9Updated 5 years ago
• vallejocc / Malware-Analysis-Reports-Manual
  My manual analysis of malware families
  ☆13Updated 8 years ago
• sysopfb / open_mal_analysis_notes
  open source malware analysis and research notes dump
  ☆26Updated last year
• securesean / Shim-Process-Scanner
  Windows x64 Process Scanner to detect application compatability shims
  ☆37Updated 6 years ago
• DimopoulosElias / Primitives
  ☆31Updated 5 years ago
• vallejocc / Malware-Analysis-scripts
  Scripts targeting specific families
  ☆13Updated 8 years ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago
• peterwintersmith / crystalaep
  Crystal Anti-Exploit Protection 2012
  ☆37Updated 5 years ago
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆25Updated 4 months ago
• connormcgarr / Presentations
  ☆28Updated 9 months ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 10 months ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 4 years ago
• Truneski / WindowsKernelProgramming-Exercises
  ☆49Updated 5 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• tyranid / setsidmapping
  Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.
  ☆23Updated 4 years ago
• byeongal / PEAnalyser
  PEAnalyser is an open source PE file analysis tool.
  ☆11Updated 4 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆43Updated 10 months ago
• deroko / SPPLUAObjectUacBypass
  ☆45Updated 7 years ago
• 0xd0cf11e / ghidra
  Anything related to Ghidra
  ☆12Updated 6 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago