Alternatives and similar repositories for lznt1

Users that are interested in lznt1 are comparing it to the libraries listed below

• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆123Updated 4 years ago
• mandiant / flare-kscldr
  FLARE Kernel Shellcode Loader
  ☆178Updated 6 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆85Updated 3 years ago
• OsandaMalith / ApiMon
  A simple API monitor for Windbg
  ☆63Updated 8 years ago
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• HexHive / malWASH
  ☆115Updated 8 years ago
• fboldewin / COM-Code-Helper
  Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code
  ☆184Updated 4 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 3 years ago
• hfiref0x / MpEnum
  Enumerate Windows Defender threat families and dump their names according category
  ☆90Updated 6 years ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆32Updated last year
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• jthuraisamy / ioctlpus
  ☆116Updated 4 years ago
• EyeOfRa / WinConMon
  Windows Console Monitoring
  ☆99Updated 7 years ago
• atxsinn3r / amsiscanner
  A C/C++ implementation of Microsoft's Antimalware Scan Interface
  ☆182Updated 7 years ago
• edeca / rtfraptor
  Extract OLEv1 objects from RTF files by instrumenting Word
  ☆51Updated 5 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆75Updated 10 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 3 years ago
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• nccgroup / DIBF
  Windows NT ioctl bruteforcer and modular fuzzer
  ☆123Updated 6 years ago
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆54Updated 6 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆109Updated 5 years ago
• hasherezade / process_chameleon
  A process overwriting its own PEB to make an illusion that it has been loaded from a different path.
  ☆96Updated 4 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆51Updated 6 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆99Updated 6 years ago
• crappycrypto / wincrypto
  Windows Crypto API compatible decryption/encryption for python
  ☆49Updated 2 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆144Updated 10 years ago
• OmerYa / Named-Pipe-Sniffer
  Mario & Luigi - Tools for sniffing Windows Named Pipes communication
  ☆129Updated 8 years ago