Alternatives and similar repositories for spython

Users that are interested in spython are comparing it to the libraries listed below

• SecurityRiskAdvisors / PDBlaster
  ☆47Updated 5 years ago
• re-fox / documentation
  ☆13Updated 4 years ago
• obscuritylabs / PeFixup
  PE File Blessing - To continue or not to continue
  ☆87Updated 5 years ago
• redcanaryco / public-research
  Public repository for Red Canary Research
  ☆37Updated 4 years ago
• airbus-cert / PSTrace
  Trace ScriptBlock execution for powershell v2
  ☆40Updated 5 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated 2 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 7 years ago
• c0decave / Shellcode-Lab
  Training material for the Shellcode-Lab, including Slides and Codes
  ☆18Updated 5 years ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆22Updated 5 years ago
• fireeye / cWMI
  This project is a lightweight wrapper for interacting with WMI using python/ctypes
  ☆38Updated 6 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• its-a-feature / KeytabParser
  Python script to parse Keytab files for macOS or *nix (typically /etc/krb5.keytab)
  ☆36Updated 5 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆55Updated 2 years ago
• mark-ignacio / bedr
  a BPF-based Linux syscall monitor
  ☆10Updated 5 years ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• zshehri / MITRE_EDR_Eval
  Parsing MITRE EDR Evaluation results
  ☆12Updated 6 years ago
• skelsec / pypykatz_wasm
  pypykats in your browser
  ☆55Updated 5 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆40Updated last year
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆24Updated 7 months ago
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆56Updated 5 years ago
• dtmsecurity / 3aj-lib
  Proof of concept communications from C# via a web browser process
  ☆21Updated 6 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 8 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 5 years ago
• nextgens / limacharlie
  Endpoint monitoring stack.
  ☆18Updated 9 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• uf0o / alkaline-injector
  Different code-injections techniques under a common tool
  ☆30Updated 5 years ago
• wietze / bsides-ldn-2019
  Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA
  ☆22Updated 5 years ago
• netmeld / netmeld
  A tool suite for use during system assessments.
  ☆35Updated 3 weeks ago