Alternatives and similar repositories for RIFT

Users that are interested in RIFT are comparing it to the libraries listed below

• cxiao / rust-reversing-workshop-recon-2024
  Slides and files for the Reversing Rust Binaries: One step beyond strings workshop at REcon 2024, presented on June 28, 2024.
  ☆78Updated last year
• 0xflux / Sanctum
  Sanctum is an experimental proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antiv…
  ☆234Updated 2 weeks ago
• thalium / vminer
  ☆88Updated 5 months ago
• cxiao / rust-malware-gallery
  A collection of malware families and malware samples which use the Rust programming language.
  ☆169Updated last year
• 0xor0ne / debugoff
  Linux anti-debugging and anti-analysis rust library
  ☆318Updated 2 years ago
• N0fix / rustbinsign
  Rust symbol recovery tool
  ☆65Updated last week
• N0fix / Ariane
  Resolve symbols from release rust binaries on Windows
  ☆20Updated last year
• vmi-rs / vmi
  Modular and extensible library for Virtual Machine Introspection
  ☆107Updated last month
• N0fix / rustbininfo
  Get information about stripped rust executables
  ☆33Updated last month
• microsoft / rusty-radamsa
  Radamsa fuzzer ported to rust lang
  ☆154Updated 3 months ago
• 0vercl0k / snapshot
  WinDbg extension written in Rust to dump the CPU / memory state of a running VM
  ☆117Updated last month
• microsoft / vbs-enclave-rs
  Sample Rust crate used to implement a VBS enclave in Rust
  ☆35Updated last month
• ergrelet / windiff
  Web-based tool that allows comparing symbol, type and syscall information of Microsoft Windows binaries across different versions of the …
  ☆345Updated this week
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆64Updated 2 months ago
• delulu-hq / phnt-rs
  Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
  ☆46Updated last month
• Vector35 / scc
  ☆147Updated 2 months ago
• binarly-io / idalib
  Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib
  ☆178Updated last month
• airbus-cert / minusone
  Powershell Linter
  ☆62Updated last week
• mandiant / xrefer
  FLARE Team's Binary Navigator
  ☆266Updated last month
• DualHorizon / blackpill
  A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs
  ☆335Updated 2 weeks ago
• mandiant / poisonplug-scatterbrain
  Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
  ☆61Updated 3 months ago
• thalium / rkchk
  Rust Linux Kernel Module designed for LKM rootkit detection
  ☆50Updated 4 months ago
• eurecom-s3 / lemon
  eBPF Memory Dump Tool
  ☆78Updated 3 weeks ago
• vobst / btf2json
  Generate Volatility3 profiles from BTF.
  ☆26Updated 6 months ago
• 0xdea / oneiromancer
  Reverse engineering assistant that uses a locally running LLM to aid with pseudo-code analysis.
  ☆78Updated 2 weeks ago
• hugsy / recon_2024_windbg_workshop
  ☆74Updated last year
• recontech404 / Kairos
  Open Source eBPF Malware Analysis Framework
  ☆48Updated 8 months ago
• novafacing / cargo-shellcode
  Cargo subcommand to build a crate into shellcode
  ☆25Updated 10 months ago
• struppigel / hedgehog-tools
  ☆115Updated last week
• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆83Updated this week