Alternatives and similar repositories for autoit-analysis

Users that are interested in autoit-analysis are comparing it to the libraries listed below

• hasherezade / tag_converter
  ☆23Updated 4 years ago
• hasherezade / hidden_bee_tools
  Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware
  ☆55Updated 4 months ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 3 years ago
• sysopfb / Unpackers
  My collection of unpackers for malware packers/crypters
  ☆28Updated 8 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last year
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• mandiant / win10_auto
  ☆24Updated 6 years ago
• SouhailHammou / Exploits
  Exploits I've authored
  ☆60Updated 6 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆17Updated 3 years ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆62Updated last year
• hasherezade / decryptors_archive
  Archive of ransomware decryptors
  ☆33Updated 8 years ago
• connormcgarr / Presentations
  ☆30Updated 3 months ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆37Updated 8 years ago
• crackinglandia / fuu
  [F]aster [U]niversal [U]npacker
  ☆58Updated 12 years ago
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆29Updated 3 years ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆58Updated 4 years ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆72Updated 3 years ago
• connormcgarr / Kernel-Escalation-of-Privileges-Payloads
  NT AUTHORITY\SYSTEM
  ☆43Updated 5 years ago
• archival-0x / menagerie
  Cross-platform malware development library for anti-analysis techniques
  ☆25Updated 4 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆22Updated 7 years ago
• jthuraisamy / av-fingerprints
  Antivirus Emulator Fingerprints
  ☆29Updated 7 years ago
• DoubleLabyrinth / ProcessHollowing
  ☆37Updated 6 years ago
• panagioto / Mimir
  A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…
  ☆45Updated 4 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆35Updated 9 years ago
• OSWatcher / windows-desktop
  History and analysis of Windows desktop images
  ☆20Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆73Updated 2 years ago