Alternatives and similar repositories for SignFinder:

Users that are interested in SignFinder are comparing it to the libraries listed below

• nyx0 / Tinba
  Tinba Banking Trojan
  ☆84Updated 10 years ago
• nyx0 / Alina
  Alina Spark - Point of Sales Trojan
  ☆46Updated 10 years ago
• MalwareTech / UACElevator
  Passive UAC elevation using dll infection
  ☆73Updated 10 years ago
• vxlabinfo / malware
  ☆28Updated 9 years ago
• Cn33liz / TpmInitUACBypass
  Bypassing User Account Control (UAC) using TpmInit.exe
  ☆127Updated 8 years ago
• secretsquirrel / recomposer
  Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.
  ☆131Updated 11 years ago
• Nervous / GreenKit-Rootkit
  GreenKit is an userland rootkit hiding its own files and mining bitcoins on compromised computers. Do /NOT/ download or use this rootkit …
  ☆44Updated 7 years ago
• hatRiot / bugs
  public bugs/proof of concepts
  ☆48Updated 4 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆104Updated 6 years ago
• hacksysteam / ShellcodeOfDeath
  Shellcode Of Death
  ☆38Updated 11 years ago
• FSecureLABS / CVE-2016-7255
  An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit
  ☆81Updated 8 years ago
• BorjaMerino / tlsInjector
  Python script to inject and run shellcodes through TLS callbacks
  ☆50Updated 9 years ago
• aaaddress1 / HellKitty-In-VC
  Ring3 Rootkit Backdoor.
  ☆41Updated 9 years ago
• xan7r / cypher
  Simple tool to automate adding shellcode to PE files
  ☆49Updated 7 years ago
• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago
• nyx0 / PowerLoader
  Power Loader botnet
  ☆39Updated 10 years ago
• hvqzao / foolavc
  foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV
  ☆113Updated 3 years ago
• iGh0st / Crypters
  Various Crypter Project
  ☆51Updated 11 years ago
• nettitude / DLLInjection
  DLL Injection Library & Tools
  ☆72Updated 8 years ago
• Microwave89 / syscalltest
  PoC for Bypassing UM Hooks By Bruteforcing Intel Syscalls
  ☆39Updated 9 years ago
• hasherezade / loaderine
  A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.
  ☆19Updated 7 years ago
• WithSecureLabs / doublepulsar-usermode-injector
  A utility to use the usermode shellcode from the DOUBLEPULSAR payload to reflectively load an arbitrary DLL into another process, for use…
  ☆117Updated 7 years ago
• AlephNull314 / AbsoluteZero
  Anti-AV compilation
  ☆42Updated 11 years ago
• a0rtega / pafish-dll
  DLL to use the power of Pafish
  ☆32Updated 3 years ago
• 0xyg3n / mem64
  Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
  ☆27Updated 7 years ago
• aainz / AiJson
  ☆12Updated 8 years ago
• vallejocc / PoC-Inject-Data-WM_COPYDATA
  A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext
  ☆50Updated 6 years ago
• Cn33liz / VBSMeter
  VBS Reversed TCP Meterpreter Stager
  ☆87Updated 7 years ago
• nyx0 / RIG
  RIG Exploit Kit (front end)
  ☆30Updated 10 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆51Updated 6 years ago