Alternatives and similar repositories for lznt1

Users that are interested in lznt1 are comparing it to the libraries listed below

• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆124Updated 5 years ago
• hfiref0x / MpEnum
  Enumerate Windows Defender threat families and dump their names according category
  ☆93Updated 6 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆98Updated 4 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆179Updated 6 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆85Updated 3 years ago
• Dump-GUY / ghidra_scripts
  ☆73Updated 2 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆66Updated 3 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆77Updated 11 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆65Updated 8 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 6 years ago
• hasherezade / tag_converter
  ☆23Updated 5 years ago
• EyeOfRa / WinConMon
  Windows Console Monitoring
  ☆103Updated 8 years ago
• fboldewin / COM-Code-Helper
  Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code
  ☆184Updated 5 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 6 years ago
• Wenzel / osw-fs-windows
  A git history of Windows filesystems
  ☆77Updated 5 years ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆177Updated this week
• OsandaMalith / PESecInfo
  A simple tool to view important DLL Characteristics and change DEP and ASLR
  ☆45Updated 7 years ago
• NtRaiseHardError / Kaiser
  Fileless persistence, attacks and anti-forensic capabilties.
  ☆92Updated 7 years ago
• 86hh / DreamLoader
  Simple 32/64-bit PEs loader.
  ☆139Updated 7 years ago
• HexHive / malWASH
  ☆117Updated 9 years ago
• infosecguerrilla / ReflectiveSOInjection
  Reflective SO injection is a library injection technique in which the concept of reflective programming is employed to perform the loadin…
  ☆117Updated 9 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆37Updated 6 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆185Updated 6 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆42Updated 6 years ago
• silascutler / LnkParse
  Windows Shortcut file (LNK) parser
  ☆137Updated 3 years ago
• klks / checksec
  x64dbg plugin to check security settings
  ☆140Updated 8 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 9 years ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆93Updated 2 years ago