Alternatives and similar repositories for mayhem:

Users that are interested in mayhem are comparing it to the libraries listed below

• hegusung / AVSignSeek
  Tool written in python3 to determine where the AV signature is located in a binary/payload
  ☆313Updated 6 years ago
• MarioVilas / winappdbg
  WinAppDbg Debugger
  ☆452Updated last year
• bee13oy / AV_Kernel_Vulns
  Pocs for Antivirus Software‘s Kernel Vulnerabilities
  ☆263Updated 7 years ago
• peperunas / injectopi
  A set of tutorials about code injection for Windows.
  ☆309Updated 5 months ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆426Updated 6 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆289Updated 6 months ago
• Antonin-Deniau / cave_miner
  Search for code cave in all binaries
  ☆276Updated 6 months ago
• mandiant / flare-dbg
  flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
  ☆149Updated 7 years ago
• Darkabode / zerokit
  Zerokit/GAPZ rootkit (non buildable and only for researching)
  ☆181Updated 5 years ago
• x64dbg / mona
  Fork of mona.py with x64dbg support
  ☆99Updated 2 years ago
• 1111joe1111 / ida_ea
  A set of exploitation/reversing aids for IDA
  ☆415Updated 7 years ago
• EgeBalci / Cminer
  Cminer is a tool for enumerating the code caves in PE files.
  ☆147Updated last year
• MortenSchenk / BHUSA2017
  Content from presentation at BHUSA 2017
  ☆180Updated 7 years ago
• mandiant / flare-qdb
  Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
  ☆162Updated last year
• Spajed / processrefund
  An attempt at Process Doppelgänging
  ☆183Updated 7 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆84Updated 2 years ago
• tyranid / windows-logical-eop-workshop
  ☆231Updated 7 years ago
• BorjaMerino / Pazuzu
  Pazuzu: Reflective DLL to run binaries from memory
  ☆212Updated 4 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆361Updated 7 years ago
• HexHive / malWASH
  ☆112Updated 8 years ago
• MagnetForensics / SwishDbgExt
  Incident Response & Digital Forensics Debugging Extension
  ☆374Updated 6 years ago
• gpoulios / ROPInjector
  Patching ROP-encoded shellcodes into PEs
  ☆184Updated 7 years ago
• Rootkitsmm-zz / Win32k-Fuzzer
  Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )
  ☆132Updated 9 years ago
• GradiusX / HEVD-Python-Solutions
  Python solutions for the HackSysTeam Extreme Vulnerable Driver
  ☆151Updated 3 years ago
• tinysec / windows-syscall-table
  windows syscall table from xp ~ 10 rs4
  ☆351Updated 6 years ago
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 6 years ago
• silascutler / LnkParse
  Windows Shortcut file (LNK) parser
  ☆135Updated 2 years ago
• OALabs / frida-wshook
  Script analysis tool based on Frida.re
  ☆128Updated 7 years ago
• bruce30262 / TWindbg
  PEDA-like debugger UI for WinDbg
  ☆201Updated 10 months ago
• tandasat / DotNetHooking
  Sample use cases of the .NET native code hooking technique
  ☆207Updated 6 years ago