Alternatives and similar repositories for YaraEngine

Users that are interested in YaraEngine are comparing it to the libraries listed below

• accidentalrebel / shcode2exe
  Compile shellcode into an exe file from Windows or Linux.
  ☆71Updated 7 months ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆76Updated 2 years ago
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆54Updated 3 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆118Updated 2 years ago
• hasherezade / shellc_encoder
  Standalone Metasploit-like XOR encoder for shellcode
  ☆50Updated last year
• ihack4falafel / ROR13HashGenerator
  C# implementation to produce ROR-13 numeric hash for given function API name
  ☆34Updated 6 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated 2 years ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆37Updated 2 years ago
• xalicex / Unhook-Import-Address-Table
  Piece of code to detect and remove hooks in IAT
  ☆65Updated 3 years ago
• forrest-orr / ExploitDev
  Various tools, PoCs and experiments related to my blog at https://www.forrest-orr.net/
  ☆40Updated 4 years ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆44Updated 2 years ago
• knight0x07 / BumbleCrypt
  A Bumblebee-inspired Crypter
  ☆79Updated 3 years ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆124Updated last year
• matterpreter / cpuid
  A class to emulate the behavior of NtQuerySystemInformation when passed the SystemHypervisorDetailInformation information class
  ☆27Updated 2 years ago
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆32Updated 2 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Updated 3 years ago
• vvelitkn / Evasion-Escaper
  Evasion Escaper is a project aimed at evading the checks that malicious software performs to detect if it's running in a virtual environm…
  ☆111Updated 11 months ago
• marcusbotacin / Dropper
  Embed an executable as a PE resource, drops and launches it in runtime.
  ☆64Updated 4 years ago
• jdu2600 / Etw-SyscallMonitor
  Monitors ETW for security relevant syscalls maintaining the set called by each unique process
  ☆87Updated 2 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• leandrofroes / malware-research
  General malware analysis stuff
  ☆37Updated last year
• X-Junior / Malware-IDAPython-Scripts
  ☆23Updated last year
• rbmm / LdrpKernel32DllName
  ☆89Updated last year
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆41Updated 2 years ago
• repnz / shellcode2exe
  Batch script to compile a binary shellcode blob into an exe file
  ☆89Updated 6 years ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 5 years ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 4 years ago
• cyberark / malware-research
  ☆37Updated 10 months ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆66Updated 2 years ago