Alternatives and similar repositories for mona:

Users that are interested in mona are comparing it to the libraries listed below

• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆176Updated 5 years ago
• ihack4falafel / OSEE
  Collection of things made during my preparation to take on OSEE
  ☆95Updated 5 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆148Updated last year
• AMOSSYS / MemITM
  Tool to make in memory man in the middle
  ☆124Updated 6 years ago
• tyranid / ExploitDotNetDCOM
  A tool to exploit .NET DCOM for EoP and RCE. Is fixed in latest versions of the .NET.
  ☆87Updated 10 years ago
• GradiusX / HEVD-Python-Solutions
  Python solutions for the HackSysTeam Extreme Vulnerable Driver
  ☆151Updated 3 years ago
• tyranid / windows-logical-eop-workshop
  ☆231Updated 7 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆134Updated 7 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆121Updated 5 years ago
• FuzzySecurity / HackSysTeam-PSKernelPwn
  ☆140Updated 7 years ago
• abatchy17 / HEVD-Exploits
  Exploit code used for the HackSysExtremeVulnerableDriver.
  ☆43Updated 6 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆104Updated 6 years ago
• theevilbit / exploit_generator
  Automated Exploit generation with WinDBG
  ☆190Updated 8 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆213Updated 4 years ago
• v-p-b / peCloakCapstone
  Platform independent peCloak fork based on Capstone
  ☆103Updated 8 years ago
• cbayet / Exploit-CVE-2017-6008
  Exploits for CVE-2017-6008, a kernel pool buffer overflow leading to privilege escalation.
  ☆116Updated 3 months ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆93Updated 3 years ago
• REal0day / MaliciousPark
  Another Repo of Malware. Enjoy. <3
  ☆60Updated 5 years ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆117Updated 6 years ago
• MohitDabas / malwinx
  Just a normal flask web app to understand win32api with code snippets and references.
  ☆72Updated 5 years ago
• MarioVilas / shellcode_tools
  Miscellaneous tools written in Python, mostly centered around shellcodes.
  ☆145Updated 9 years ago
• tyranid / windows-attacksurface-workshop
  Workshop material for a Windows Attack Surface Analysis Workshop
  ☆67Updated 5 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆143Updated 10 years ago
• hacksysteam / WpadEscape
  Sandbox escape using WinHTTP Web Proxy Auto-Discovery Service
  ☆85Updated 5 years ago
• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆313Updated 6 years ago
• sensepost / gdi-palettes-exp
  DC25 5A1F - Demystifying Windows Kernel Exploitation by Abusing GDI Objects
  ☆144Updated 7 years ago
• HexHive / malWASH
  ☆113Updated 8 years ago
• joesecurity / pafishmacro
  Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …
  ☆281Updated 7 years ago
• secretsquirrel / fido
  Teaching old shellcode new tricks
  ☆204Updated 7 years ago
• govolution / avepoc
  some pocs for antivirus evasion
  ☆130Updated last year