Alternatives and similar repositories for hollowise

Users that are interested in hollowise are comparing it to the libraries listed below

• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆73Updated 3 weeks ago
• OtterHacker / Hooker
  ☆108Updated last year
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆33Updated 11 months ago
• ArtemBaranov / WindowsRootkitsGuide
  ☆71Updated 10 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• CroodSolutions / AutoRMM
  AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…
  ☆90Updated 4 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆136Updated this week
• struppigel / hedgehog-tools
  ☆117Updated last week
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• sensepost / mydumbedr
  ☆121Updated last year
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 6 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆53Updated 11 months ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆138Updated last year
• Cyb3r-Monk / Microsoft-Vulnerable-Driver-Block-Lists
  Microsoft Vulnerable Driver Block Lists in CSV and JSON for SIEM lookups
  ☆52Updated 3 months ago
• rad9800 / talks
  ☆59Updated 8 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated 6 months ago
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆58Updated 2 years ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 8 months ago
• hasherezade / flareon2024
  ☆39Updated last year
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆124Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆140Updated last year
• joe-desimone / rep-research
  ☆77Updated last year
• MazX0p / CobaltSentry
  ☆24Updated 10 months ago
• jaredcatkinson / MalwareMorphology
  ☆84Updated last year
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆121Updated 8 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆66Updated 10 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆66Updated 7 months ago
• rasta-mouse / pwnlift
  Easy peasy file uploads
  ☆33Updated 3 months ago