Alternatives and similar repositories for YaraSharp

Users that are interested in YaraSharp are comparing it to the libraries listed below

• microsoft / libyara.NET
  .NET wrapper for libyara built in C++ CLI used to easily incorporate yara into .NET projects
  ☆60Updated last year
• bytecode77 / bytecode-api
  Framework for C# development
  ☆71Updated last week
• EricZimmerman / Registry
  Full featured, offline Registry parser in C#
  ☆238Updated last month
• friedkiwi / netcrypt
  .NET executable packer
  ☆62Updated 7 years ago
• enkomio / RunDotNetDll
  A simple utility to list all methods of a given .NET Assembly and to invoke them
  ☆75Updated 4 years ago
• EricZimmerman / Lnk
  Lnk file parser
  ☆90Updated 6 months ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆70Updated 4 years ago
• secana / CertDump
  Dump certificates from PE files in different formats
  ☆38Updated last year
• AviAvni / NativeLeakDetector
  Win32 memory leak detector with ETW
  ☆47Updated 7 years ago
• mandiant / jitm
  JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.
  ☆55Updated 4 years ago
• malcomvetter / WMIProcessWatcher
  An example pattern in C# for using WMI to monitor process creation and termination events.
  ☆53Updated 7 years ago
• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 4 years ago
• Demonslay335 / DotNetMonitor
  Think APIMonitor, but for .NET binaries.
  ☆56Updated 2 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆35Updated 9 years ago
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆41Updated 2 years ago
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆140Updated 4 months ago
• Washi1337 / ProxyObjects
  A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET
  ☆47Updated 2 years ago
• repnz / shellcode2exe
  Batch script to compile a binary shellcode blob into an exe file
  ☆88Updated 6 years ago
• malwarefrank / dnfile
  Parse .NET executable files.
  ☆80Updated 3 months ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆118Updated 2 years ago
• hexfati / SharpDllLoader
  A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL
  ☆135Updated last year
• wireless90 / ProcessInjector.NET
  Learning Process Injection and Hollowing techniques
  ☆42Updated 3 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• advanced-threat-research / DotDumper
  An automatic unpacker and logger for DotNet Framework targeting files
  ☆266Updated 2 years ago
• malcomvetter / NamedPipes
  A pattern for client/server communication via Named Pipes via C#
  ☆98Updated 7 years ago
• AxDSan / dnSpy-StringsAnalyzer
  StringsAnalyzer is a simple, yet powerful plugin for analyzing string literals in .NET assemblies within dnSpy. It provides a comprehensi…
  ☆70Updated 10 months ago
• EricZimmerman / RegistryPlugins
  ☆71Updated 3 months ago
• t3rabyt3-zz / Gozi
  Gozi ISFB is a well-known and widely distributed banking trojan, and has been in the threat landscape for the past several years.
  ☆65Updated 7 years ago
• dr4k0nia / Origami
  Packer compressing .net assemblies, (ab)using the PE format for data storage
  ☆174Updated 2 years ago
• secana / PeNet-Analyzer
  Analyzers for Portable Executable anomalies and other malware behavior.
  ☆32Updated last year