Alternatives and similar repositories for MemProcFS-plugins:

Users that are interested in MemProcFS-plugins are comparing it to the libraries listed below

• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆54Updated 3 weeks ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 3 years ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆22Updated 4 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆43Updated last year
• PwCUK-CTO / ScatterBee_Analysis
  Scripts to aid analysis of files obfuscated with ScatterBee.
  ☆18Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆68Updated 10 months ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆45Updated last year
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆31Updated 5 years ago
• GDATAAdvancedAnalytics / winreg-tasks
  ☆18Updated 2 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆115Updated last year
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆30Updated 4 years ago
• edygert / runsc
  runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…
  ☆36Updated 2 years ago
• EricZimmerman / SDB
  Parse Microsoft shim databases
  ☆29Updated last month
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆58Updated last month
• woanware / etw-event-dumper
  ☆33Updated 2 years ago
• Dump-GUY / ghidra_scripts
  ☆67Updated last year
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆46Updated 3 years ago
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆52Updated last month
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆108Updated 3 years ago
• nasbench / procmon-malware-analysis-filters
  Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool
  ☆15Updated 4 years ago
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆35Updated last year
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 2 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆50Updated 11 months ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆36Updated 5 months ago
• EricZimmerman / RegistryPlugins
  ☆63Updated last month
• Dump-GUY / Get-PDInvokeImports
  Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…
  ☆53Updated 2 years ago
• FuzzySecurity / BulkBindex
  Winbindex bot to pull in binaries for specific releases
  ☆45Updated last year
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆25Updated 3 years ago
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆35Updated last year