Alternatives and similar repositories for malware_analysis

Users that are interested in malware_analysis are comparing it to the libraries listed below

• OtterHacker / LabS4U2Self
  ☆30Updated 2 years ago
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆54Updated 3 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated 6 months ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆30Updated 2 months ago
• attl4s / freeMetsrvLoader
  freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package
  ☆33Updated 2 years ago
• OtterHacker / Cerbere
  ☆48Updated 2 years ago
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• maliciousgroup / GOADvSphere
  A vSphere deployment of GOADv2 BETA Testing (v0.1)
  ☆26Updated last year
• FuzzySecurity / SAFACon-Vienna
  ☆23Updated last year
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• lasq88 / MalwareAnalysis
  Malware Analysis tools
  ☆26Updated 8 months ago
• tccontre / Reg-Restore-Persistence-Mole
  a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…
  ☆51Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆39Updated 2 months ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆23Updated last year
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆21Updated last year
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 2 years ago
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• secur30nly / rust-herpaderping
  Rust implementation of the Process Herpaderping
  ☆24Updated last year
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆32Updated last month
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• RiccardoAncarani / GPOPowerParser
  A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc
  ☆14Updated 5 years ago
• V3ded / ToolDump-v1
  Some of my custom "tools".
  ☆23Updated 3 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆28Updated 10 months ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago