Alternatives and similar repositories for siphon:

Users that are interested in siphon are comparing it to the libraries listed below

• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• rad9800 / RansomFS
  ☆29Updated last month
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• anyrun / blog-scripts
  ☆28Updated 4 months ago
• FarghlyMal / Config-Extractors
  ☆26Updated 4 months ago
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆30Updated 3 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated 9 months ago
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆34Updated last week
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆17Updated last year
• DissectMalware / yaradbg-backend
  ☆25Updated last year
• hasherezade / flareon2023
  ☆25Updated 5 months ago
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆54Updated 2 years ago
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆52Updated 3 months ago
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆27Updated last month
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• rivitna / APT
  ☆14Updated 2 years ago
• cyberark / malware-research
  ☆36Updated last month
• qtc-de / rpv-web
  rpv-web is a browser based frontend for the rpv library
  ☆24Updated this week
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• captainGeech42 / implant.js
  Proof-of-concept modular implant platform leveraging v8
  ☆51Updated last month
• freakick22 / SpyAI
  Intelligent Malware that takes screenshots for entire monitors and exfiltrate them through Trusted Channel Slack to the C2 server that's …
  ☆26Updated this week
• fcccode / Vx-Engines
  Collection of source code for Polymorphic, Metamorphic, and Permutation Engines used in Malware
  ☆26Updated 5 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆70Updated 11 months ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆26Updated this week
• cdong1012 / IDAPython-Malware-Scripts
  ☆72Updated last year
• tyranid / windows-memory-access-traps
  A few examples of how to trap virtual memory access on Windows.
  ☆29Updated 3 months ago
• embee-research / Icedid-file-decryptor
  Static Decryptor for IcedID Malware
  ☆18Updated 2 years ago