Alternatives and similar repositories for malware_analysis:

Users that are interested in malware_analysis are comparing it to the libraries listed below

• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 2 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆23Updated 2 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated last year
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated last year
• OtterHacker / LabS4U2Self
  ☆30Updated 2 years ago
• SIFalcon / Detection
  ☆22Updated last year
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆25Updated 2 years ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆36Updated 4 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆20Updated 2 years ago
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆52Updated 3 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 3 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆25Updated 2 years ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 2 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• mhaskar / DNSKeyGen
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆39Updated 2 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆31Updated 8 months ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆54Updated 2 years ago
• OtterHacker / Cerbere
  ☆46Updated 2 years ago
• maliciousgroup / GOADvSphere
  A vSphere deployment of GOADv2 BETA Testing (v0.1)
  ☆26Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• RiccardoAncarani / talks
  ☆42Updated 2 years ago
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆14Updated 9 months ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated last year