Alternatives and similar repositories for sigcheck

Users that are interested in sigcheck are comparing it to the libraries listed below

• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆36Updated 7 years ago
• SouhailHammou / IDARay-Plugin
  IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.
  ☆18Updated 6 years ago
• OSRDrivers / penter
  penter hook example and driver time recorder
  ☆31Updated 7 years ago
• rwfpl / rewolf-ldrdebug
  Helper utility for debugging windows PE/PE+ loader.
  ☆52Updated 10 years ago
• evandowning / windbg-trace
  Use WinDBG to trace the Windows API calls of any Portable Executable file
  ☆31Updated 8 years ago
• dcdelia / sniper
  Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)
  ☆24Updated 3 years ago
• secrary / idenLibX
  idenLib (Library Function Identification) plugin for x32dbg
  ☆42Updated 6 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated last year
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆18Updated last year
• williballenthin / siglib
  function identification signatures
  ☆12Updated 4 years ago
• Winbagility / Winbagility
  [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;
  ☆74Updated 6 years ago
• torusrxxx / x64dbgpatchexporter
  Patch exporter for x64dbg
  ☆31Updated 7 years ago
• mandiant / unicorn-libemu-shim
  libemu shim layer and win32 environment for Unicorn Engine
  ☆72Updated 8 years ago
• BreakingMalwareResearch / CFGExceptions
  Adding exceptions to Microsoft's Control Flow Guard (CFG)
  ☆58Updated 9 years ago
• yardenshafir / KernelDataStructureFinder
  Driver and WinDBG scripts to dump information about all resources and lookaside lists
  ☆68Updated 5 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 3 years ago
• stolenbytes / sxshashing
  ☆18Updated 7 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆45Updated 7 years ago
• lowleveldesign / lldext
  My commands and scripts extending WinDbg
  ☆36Updated 3 months ago
• mr-tz / idapython
  IDAPython scripts
  ☆15Updated 7 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆42Updated 5 years ago
• SinaKarvandi / Pinitor
  An API Monitor based on Instrumentation
  ☆43Updated 7 years ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆70Updated 4 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• tandasat / DrvLoader
  A command line tool to load and unload a device driver.
  ☆47Updated 8 years ago
• nihilus / uberstealth
  ☆11Updated 10 years ago
• changeofpace / PE-Header-Dump-Utilities
  This x64dbg plugin adds several commands for dumping PE header information by address.
  ☆63Updated 8 years ago
• RceNinja / Re-Scripts
  ☆34Updated 4 years ago
• alexander-hanel / ida_yara
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Updated 6 years ago