Alternatives and similar repositories for hollowise

Users that are interested in hollowise are comparing it to the libraries listed below

• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆73Updated last week
• OtterHacker / Hooker
  ☆108Updated last year
• CroodSolutions / AutoRMM
  AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…
  ☆91Updated 4 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆33Updated 11 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆135Updated this week
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆52Updated 11 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆100Updated 5 months ago
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆149Updated last week
• frkngksl / UnlinkDLL
  DLL Unlinking from InLoadOrderModuleList, InMemoryOrderModuleList, InInitializationOrderModuleList, and LdrpHashTable
  ☆58Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆71Updated 10 months ago
• wetw0rk / wetw0rk.github.io
  ☆20Updated last month
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• Cyb3r-Monk / Microsoft-Vulnerable-Driver-Block-Lists
  Microsoft Vulnerable Driver Block Lists in CSV and JSON for SIEM lookups
  ☆50Updated 2 months ago
• rad9800 / talks
  ☆60Updated 7 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆122Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆110Updated last month
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• MazX0p / CobaltSentry
  ☆24Updated 9 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• hasherezade / flareon2024
  ☆39Updated 11 months ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated 2 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated last year
• CroodSolutions / BypassIT
  BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.
  ☆44Updated 4 months ago
• ioncodes / SilentLoad
  "Service-less" driver loading
  ☆163Updated last year
• sensepost / mydumbedr
  ☆120Updated last year
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 8 months ago
• joe-desimone / rep-research
  ☆77Updated last year
• CaptainNox / Hypnos
  A more reliable way of resolving syscall numbers in Windows
  ☆52Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated 11 months ago