Alternatives and similar repositories for bpfdoor-scanner:

Users that are interested in bpfdoor-scanner are comparing it to the libraries listed below

• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• pmelson / pyhexdmp
  ☆27Updated 3 years ago
• MITRECND / picaboo
  Specialized tool to dump Position Independent Code.
  ☆22Updated 4 years ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• keyboardcrunch / sentinelone_usbscan
  A custom SentinelOne USB scanner.
  ☆18Updated 3 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆12Updated 4 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• mgrube / recon_22
  ☆10Updated 2 years ago
• waleedassar / SyscallNumberExtractor
  ☆24Updated 3 years ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆36Updated last year
• signalblur / impelf
  "ImpELF: A Python-based ELF hashing utility that generates unique fingerprints for ELF binaries using their imported functions and librar…
  ☆15Updated last year
• snemes / malware-analysis
  ☆23Updated 4 years ago
• blackarrowsec / malware-research
  Malware campaigns and APTs research by BlackArrow
  ☆18Updated 4 years ago
• ethereal-vx / Persistence
  Recreating and reviewing the Windows persistence methods
  ☆38Updated 3 years ago
• SIFalcon / Detection
  ☆22Updated last year
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• cyberark / malware-research
  ☆37Updated last month
• threatexpress / procdot_sandbox
  ProcDot Malware Sandbox
  ☆24Updated 5 months ago
• MathildeVenault / TheRestarter
  Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows …
  ☆14Updated last year
• dsnezhkov / exclave
  ☆16Updated 3 years ago
• OccamsXor / sim-ba
  (Sim)ulate (Ba)zar Loader
  ☆29Updated 4 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• nccgroup / mimikatz-detector-busylight
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆20Updated 2 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• SolomonSklash / COM-Hijacking
  An example of COM hijacking using a proxy DLL.
  ☆28Updated 3 years ago
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆43Updated last year
• rhotav / PT_LOAD-Injector
  An injector that use PT_LOAD technique
  ☆12Updated 2 years ago
• perturbed-platypus / LinooxMalware
  ☆27Updated 5 years ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆32Updated 2 years ago