Alternatives and similar repositories for filegrab

Users that are interested in filegrab are comparing it to the libraries listed below

• changeofpace / PE-Header-Dump-Utilities
  This x64dbg plugin adds several commands for dumping PE header information by address.
  ☆63Updated 8 years ago
• Cr4sh / DrvHide-PoC
  Hidden kernel mode code execution for bypassing modern anti-rootkits.
  ☆83Updated 14 years ago
• Fyyre / kerneldetective
  Kernel Detective
  ☆145Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆132Updated last year
• Cr4sh / PTBypass-PoC
  Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
  ☆78Updated 14 years ago
• andrew-boyarshin / LoaderWatch
  Windows 10 PE image loader (LDR) NTDLL component toolbox
  ☆49Updated 5 years ago
• merces / entropy
  CLI program to calculate the entropy of files
  ☆70Updated last year
• t3ssellate / unmapper
  An automatic tool for fixing dumped PE files
  ☆41Updated 4 years ago
• horsicq / pex64dbg
  ☆150Updated this week
• hasherezade / hidden_bee_tools
  Parser for a custom executable format from Hidden Bee malware (first stage)
  ☆43Updated 9 months ago
• hMihaiDavid / hooks
  A DLL that performs IAT hooking
  ☆27Updated 6 years ago
• mandiant / jitm
  JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.
  ☆54Updated 4 years ago
• horsicq / Formats
  Binary formats
  ☆27Updated this week
• Fare9 / Windows-Internals
  My repository to upload drivers from different books and all the information related to windows internals.
  ☆156Updated 5 years ago
• Ice3man543 / ZeusInjector
  An Open Source Windows DLL Injector With All Known Techniques Available
  ☆86Updated 7 years ago
• adrianyy / x64-syscall
  x64 syscall caller in C++.
  ☆90Updated 7 years ago
• nemesisqp / al-khaser
  Al-khaser is a PoC malware with good intentions that aimes to stress your malware analysis / sandbox environement
  ☆32Updated 10 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆206Updated 2 years ago
• NullArray / WinKernel-Resources
  A list of excellent resources for anyone to deepen their understanding with regards to Windows Kernel Exploitation and general low level …
  ☆144Updated 2 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆121Updated 4 years ago
• arielkoren / DisablePatchGuard
  disable most common windowsx64 systems patchguard
  ☆85Updated 6 years ago
• buzzer-re / x64dbg-ASLR-Removal
  Plugin to patch and remove ASLR from PE files on x64dbg
  ☆39Updated 2 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆36Updated 7 years ago
• zer0fl4g / DebugDetector
  ☆117Updated 12 years ago
• niemand-sec / Reversing-XignCode3-Driver
  I'm going to be dropping code from the XC3 Driver (result of reversing the driver)
  ☆69Updated 5 years ago
• leandrofroes / manw
  A simple multiplatform command line search tool for Windows API.
  ☆46Updated 3 months ago
• redplait / pexphide
  PoC for hiding PE exports
  ☆67Updated 4 years ago
• ionescu007 / r0ak
  ☆32Updated 6 years ago
• kkent030315 / NtSymbol
  Resolve DOS MZ executable symbols at runtime
  ☆95Updated 3 years ago
• MalwareTech / ZombifyProcess
  Inject code into a legitimate process
  ☆144Updated 10 years ago