☆127Mar 7, 2026Updated 2 weeks ago
Alternatives and similar repositories for hedgehog-tools
Users that are interested in hedgehog-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Jun 14, 2022Updated 3 years ago
- Knowledge base for reverse engineering and malware analysis☆15Jan 11, 2026Updated 2 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆172Jul 20, 2024Updated last year
- Source Code of MSIL Ransom☆14Feb 11, 2023Updated 3 years ago
- PoCs of (outdated) privilege escalation vulnerability☆12Dec 31, 2024Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Dec 16, 2023Updated 2 years ago
- Proof-of-Concept for CVE-2024-21345☆78Apr 26, 2024Updated last year
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Mar 16, 2026Updated last week
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆12Oct 1, 2022Updated 3 years ago
- ☆32Apr 24, 2022Updated 3 years ago
- ☆35Jan 13, 2026Updated 2 months ago
- Progress of learning kernel development☆14Nov 20, 2022Updated 3 years ago
- A command line Windows API tracing tool for Golang binaries.☆159Dec 4, 2023Updated 2 years ago
- ☆17May 7, 2025Updated 10 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆74Apr 18, 2024Updated last year
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆54Apr 10, 2022Updated 3 years ago
- ☆35Dec 21, 2023Updated 2 years ago
- Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver☆55Oct 19, 2023Updated 2 years ago
- Windows driver template, using C++20 & cmake & GithubActions☆25Aug 9, 2024Updated last year
- Modular malware analysis artifact collection and correlation framework☆54Apr 23, 2024Updated last year
- A DTrace on Windows Reimplementation☆372Mar 12, 2026Updated last week
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆141Nov 19, 2023Updated 2 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆165Aug 23, 2024Updated last year
- Operating System Design Review: A systematic analysis of modern systems architecture☆340Jan 11, 2026Updated 2 months ago
- Scripts, Yara rules and other files developed during malware investigations☆27Aug 19, 2022Updated 3 years ago
- A Pin Tool for tracing API calls etc☆1,634Feb 8, 2026Updated last month
- Dynamic unpacker based on PE-sieve☆797Sep 13, 2025Updated 6 months ago
- Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator☆80Mar 14, 2025Updated last year
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆857Feb 2, 2024Updated 2 years ago
- ☆15Jun 5, 2019Updated 6 years ago
- Hardcore Debugging☆936Jan 6, 2026Updated 2 months ago
- High Octane Triage Analysis☆830Updated this week
- Malduck is your ducky companion in malware analysis journeys☆350Jun 22, 2025Updated 9 months ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆64Dec 26, 2024Updated last year
- Configuration Extractors for Malware☆125Apr 23, 2025Updated 11 months ago
- Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process☆287Jan 21, 2024Updated 2 years ago
- Sources Codes of many MSIL malwares☆24Aug 29, 2022Updated 3 years ago
- Some ELF Malwares☆10Mar 11, 2022Updated 4 years ago