Alternatives and similar repositories for bpfdoor-scanner

Users that are interested in bpfdoor-scanner are comparing it to the libraries listed below

• ChoiSG / kr-redteam-playbook
  오펜시브 시큐리티 TTP, 정보, 그리고 대응 방안을 분석하고 공유하는 프로젝트입니다. 정보보안 업계 종사자들과 학생들에게 도움이 되었으면 좋겠습니다.
  ☆67Updated 6 months ago
• volexity / hwp-extract
  A library and cli tool to extract HWP files.
  ☆24Updated 8 months ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆37Updated 2 years ago
• ssp4rk / threatintel
  ☆11Updated 4 years ago
• gmatuz / npm-initial-access
  Easy to extend initial access scenario to help with EDR testing on Linux and Mac
  ☆25Updated 3 years ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆89Updated last month
• pmelson / pyhexdmp
  ☆27Updated 3 years ago
• limbenjamin / nTimetools
  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
  ☆52Updated 4 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆30Updated 3 years ago
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆52Updated 9 months ago
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆45Updated 3 years ago
• cpuu / lmc
  Script for automating Linux memory capture and analysis
  ☆13Updated 5 years ago
• fboldewin / misc_malware
  ☆37Updated 4 years ago
• cyberark / malware-research
  ☆37Updated 7 months ago
• JPCERTCC / SurfaceAnalysis-on-Cloud
  Surface Analysis System on Cloud
  ☆19Updated last year
• errbody / DPRK-Research
  ☆38Updated 7 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆45Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• c3rb3ru5d3d53c / peexports
  A Multi-Threaded PE Export Collection Utility
  ☆15Updated 2 years ago
• tophat-cloud / cumulus
  Cumulus is web application weakness monitoring, works with just 3 code lines
  ☆40Updated 2 years ago
• whichbuffer / Lockbit-Black-3.0
  ☆24Updated 3 years ago
• nao-sec / rr_decoder
  Royal Road RTF Weaponizer object decoder
  ☆24Updated last year
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆27Updated 2 weeks ago
• MalGamy / YARA_Rules
  ☆67Updated 2 years ago
• password123456 / CertVerify
  A scanner that files with compromised or untrusted code signing certificates written in python.
  ☆64Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• reecdeep / HiveV5_keystream_decryptor
  bad stuffs by bad guys
  ☆49Updated 3 years ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆27Updated this week
• anyrun / blog-scripts
  ☆33Updated 10 months ago