nmantani / archiver-MOTW-support-comparison

Related projects ⓘ

Alternatives and complementary repositories for archiver-MOTW-support-comparison

• jsecurity101 / ETWInspector
  ☆153Updated 6 months ago
• mattifestation / AntimalwareBlight
  Execute PowerShell code at the antimalware-light protection level.
  ☆137Updated last year
• jsecurity101 / JonMon
  ☆173Updated 3 months ago
• almandin / ntdsdotsqlite
  A small utility to translate NTDS.dit files to SQLite format.
  ☆64Updated last year
• Mr-Un1k0d3r / WindowsDllsExport
  A list of all the DLLs export in C:\windows\system32\
  ☆211Updated 2 years ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆75Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆107Updated last year
• markuta / bw-dump
  A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.
  ☆38Updated 8 months ago
• mgeeky / msidump
  MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  ☆194Updated last year
• sensepost / mydumbedr
  ☆105Updated 9 months ago
• mttaggart / wtfbins
  WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
  ☆150Updated 3 weeks ago
• Wh04m1001 / IDiagnosticProfileUAC
  ☆179Updated 2 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆89Updated 3 years ago
• gtworek / VolatileDataCollector
  ☆188Updated 3 weeks ago
• bohops / RogueAssemblyHunter
  Rogue Assembly Hunter is a utility for discovering 'interesting' .NET CLR modules in running processes.
  ☆115Updated 2 years ago
• jfmaes / Invoke-DLLClone
  Koppeling x Metatwin x LazySign
  ☆203Updated 3 years ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆113Updated 4 months ago
• hackerhouse-opensource / SignToolEx
  Patching "signtool.exe" to accept expired certificates for code-signing.
  ☆271Updated 4 months ago
• m417z / winapiexec
  A small tool that allows to run WinAPI functions through command line parameters
  ☆176Updated 2 years ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆113Updated 6 months ago
• deepinstinct / NoFilter
  ☆294Updated 3 weeks ago
• CCob / PIVert
  ☆104Updated 3 months ago
• mlcsec / FormThief
  Spoofing desktop login applications with WinForms and WPF
  ☆170Updated 9 months ago
• Octoberfest7 / BeatRev
  POC for frustrating/defeating Malware Analysts
  ☆150Updated 2 years ago
• floesen / EventLogCrasher
  ☆181Updated 9 months ago
• CCob / Shwmae
  ☆129Updated last month
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆139Updated this week
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆65Updated last year
• jborean93 / dpapi-ng
  Python DPAPI NG Decryptor for non-Windows Platforms
  ☆56Updated last year