An open source script to perform malware static analysis on Portable Executable
☆329May 23, 2023Updated 2 years ago
Alternatives and similar repositories for PEpper
Users that are interested in PEpper are comparing it to the libraries listed below
Sorting:
- DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior☆280Nov 3, 2019Updated 6 years ago
- Automatic analysis of SWF files based on some heuristics. Extensible via plugins.☆120Jun 19, 2019Updated 6 years ago
- A static analyzer for PE executables.☆1,107Updated this week
- Volatility plugin for extracts configuration data of known malware☆495Dec 22, 2023Updated 2 years ago
- PoC Thread Execution Hijacking for Win32 Code Injection☆177Aug 8, 2024Updated last year
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆279Dec 13, 2021Updated 4 years ago
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,547Jan 20, 2026Updated last month
- CLI tool to analyze PE files☆90Sep 23, 2024Updated last year
- A machine learning tool that ranks strings based on their relevance for malware analysis.☆752Jan 22, 2026Updated last month
- ☆128May 22, 2023Updated 2 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- A simple tool to detect NBT-NS and LLMNR spoofing (and messing with them a bit)☆36Mar 21, 2019Updated 6 years ago
- A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会☆165Aug 21, 2019Updated 6 years ago
- An Active Defense and EDR software to empower Blue Teams☆1,316Aug 10, 2023Updated 2 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆723Dec 26, 2022Updated 3 years ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,269Updated this week
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆824Mar 10, 2022Updated 3 years ago
- Various snippets created during malware analysis☆464Oct 3, 2025Updated 4 months ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆619Aug 8, 2022Updated 3 years ago
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- Linux post exploitation framework written in bash designed to assist red teams in persistence, reconnaissance, privilege escalation and l…☆542Apr 14, 2021Updated 4 years ago
- FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …☆679Oct 28, 2023Updated 2 years ago
- Generating YARA rules based on binary code☆220Oct 7, 2021Updated 4 years ago
- fireELF - Fileless Linux Malware Framework☆679Apr 17, 2019Updated 6 years ago
- Silencing Sysmon via driver unload☆235Oct 13, 2022Updated 3 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆222Jul 10, 2022Updated 3 years ago
- Live hunting of code injection techniques☆385Aug 22, 2019Updated 6 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆270Jun 15, 2021Updated 4 years ago
- Robber is open source tool for finding executables prone to DLL hijacking☆787Jun 23, 2022Updated 3 years ago
- A tool to generate obfuscated one liners to aid in penetration testing☆180Jan 29, 2019Updated 7 years ago
- Digital forensic acquisition tool for Windows based incident response.☆347May 7, 2024Updated last year
- Malware Configuration And Payload Extraction☆761Nov 22, 2024Updated last year
- Python tool and library to help analyze files during malware triage and analysis.☆78Jul 2, 2020Updated 5 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Mar 11, 2025Updated 11 months ago
- Open source all-in-one CLI tool to semi-automate pentesting.☆165May 21, 2020Updated 5 years ago
- Network Pivoting Toolkit☆457Aug 26, 2023Updated 2 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆743Mar 17, 2019Updated 6 years ago
- yarGen is a generator for YARA rules☆1,776Jan 10, 2026Updated last month
- Your Swiss Army knife to analyze malicious web traffic based on the popular Fiddler web debugger.☆644Nov 27, 2024Updated last year