AGDCservices / Ghidra-ScriptsLinks
malware analysis scripts for Ghidra
☆79Updated 2 years ago
Alternatives and similar repositories for Ghidra-Scripts
Users that are interested in Ghidra-Scripts are comparing it to the libraries listed below
Sorting:
- LERN GHIDRA☆92Updated last month
- Ghidra scripts for malware analysis☆101Updated last year
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆167Updated this week
- An IDA Pro extension for easier (malware) reverse engineering☆113Updated 3 years ago
- Notes on using the Python bindings for the Unicorn Engine☆79Updated 5 years ago
- ☆72Updated 2 years ago
- Scripts to run within Ghidra, maintained by the Trellix ARC team☆115Updated 3 months ago
- FindCrypt for Ghidra written in Python☆26Updated 5 years ago
- IDA plugin for quickly copying disassembly as encoded hex bytes☆63Updated 3 years ago
- Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.☆160Updated 5 years ago
- Code snips and notes☆136Updated 3 years ago
- Malware dynamic instrumentation tool based on frida framework☆109Updated 5 years ago
- API Logger for Windows Executables☆79Updated 5 years ago
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- Repository for the code snippets from the AllThingsIDA video channel☆115Updated 4 months ago
- Writeups for CTF challenges☆31Updated last year
- ☆109Updated 2 years ago
- Research notes☆128Updated 10 months ago
- Ghidra plugin for https://analyze.intezer.com☆72Updated 2 years ago
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- Official x64dbg plugin for Binary Ninja☆80Updated 5 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated last year
- Make your Ghidra Lazy!☆153Updated 5 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- p…☆134Updated last month
- Do you want to use x64dbg instead of immunity debugger? oscp eCPPTv2 buffer overflow exploits pocs☆89Updated last year
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆68Updated 4 years ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆75Updated 4 months ago
- How to retro theme your Ghidra☆35Updated 11 months ago