Alternatives and similar repositories for malware-bazaar-advanced-search

Users that are interested in malware-bazaar-advanced-search are comparing it to the libraries listed below

• JCSteiner / SGCC---public
  Command and Control Framework using powershell implants
  ☆35Updated last month
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated last year
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• matthw / malware_analysis
  ☆18Updated last year
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆53Updated 4 months ago
• t-tani / YAMA-dev
  Yet Another Memory Analyzer for malware detection
  ☆24Updated last year
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 3 years ago
• MzHmO / PPLDescribe
  Tool for obtaining information about PPL processes
  ☆17Updated last year
• codewhitesec / apollon
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆22Updated last year
• therealunicornsecurity / tricard
  Tricard - Malware Sandbox Fingerprinting
  ☆20Updated last year
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• matro7sh / havoc-gosecdump
  ☆18Updated 7 months ago
• Und3rf10w / CobaltStrikeBOFs
  Beacon Object Files used for Cobalt Strike
  ☆19Updated 2 years ago
• fr0gger / shellcode2exe_package
  x64 Windows package of the shellcode2exe tool
  ☆14Updated 4 years ago
• patrickhener / invictus
  OSED Practice binary
  ☆24Updated last year
• atabetnouhaila / API-hashing
  ☆18Updated 9 months ago
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆50Updated last year
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated 2 years ago
• sirrushoo / python
  various python scripts
  ☆15Updated 4 years ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆27Updated 3 months ago
• securekomodo / CVE-2024-22026
  Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"
  ☆15Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated 2 years ago
• Sh3lldon / EXP-301-cheat-sheets
  Some good things for EXP-301 course
  ☆12Updated last year
• Hexastrike / LockBit-Database-Leak-2025
  Structured CSVs and table schemas extracted from the 29-April-2025 LockBit affiliate-panel database leak.
  ☆24Updated 2 months ago
• kozmer / silentpulse
  single-threaded event driven sleep obfuscation poc for linux
  ☆34Updated last month
• gemini-security / GithubC2
  ☆29Updated last year
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• codewhitesec / daphne
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆17Updated last year