malware analysis scripts for Ghidra
☆83Aug 7, 2023Updated 2 years ago
Alternatives and similar repositories for Ghidra-Scripts
Users that are interested in Ghidra-Scripts are comparing it to the libraries listed below
Sorting:
- This repo contains miscellaneous tools to aid in your malware analysis.☆13Mar 2, 2021Updated 5 years ago
- ☆16Sep 12, 2021Updated 4 years ago
- Some Ghidra scripts to automate my reverse-engineering tasks☆21Mar 18, 2021Updated 5 years ago
- Ghidra scripts for malware analysis☆102Jan 11, 2024Updated 2 years ago
- Function ID for Malware Analysis☆13Jul 6, 2020Updated 5 years ago
- My scripts for Ghidra.☆25Oct 9, 2025Updated 5 months ago
- This repository contains relevant samples and data related to the ELF Malware Analysis 101 articles☆48Jun 21, 2022Updated 3 years ago
- Generate Ghidra class structures☆12Jan 3, 2020Updated 6 years ago
- LERN GHIDRA☆94Aug 14, 2025Updated 7 months ago
- A collection of some useful Ghidra scripts☆35May 23, 2021Updated 4 years ago
- Automatically identify and extract potential anti-debugging techniques used by malware.☆28Nov 20, 2024Updated last year
- Ghidra scripts for recovering string definitions in Go binaries☆129Nov 25, 2025Updated 3 months ago
- Capa analysis importer for Ghidra.☆64Dec 2, 2020Updated 5 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Jun 5, 2023Updated 2 years ago
- Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.☆160Feb 22, 2020Updated 6 years ago
- Ghidra plugin for https://analyze.intezer.com☆72Oct 23, 2022Updated 3 years ago
- A Ghidra script to export data to a x64dbg database☆37Jan 6, 2023Updated 3 years ago
- A Ghidra extension for scripting with GraalVM languages, including Javascript, Python3, R, and Ruby.☆62Apr 27, 2021Updated 4 years ago
- Ghidra Extension to integrate BinDiff for function matching☆288Nov 2, 2025Updated 4 months ago
- Crowdstrike response script containing various functions for IR/triage☆12Dec 7, 2020Updated 5 years ago
- Ghidra Headless Scripts for Automated Analysis (Decompilation and Disassembly)☆78Nov 3, 2022Updated 3 years ago
- Plugin to label PEB addresses.☆31Feb 28, 2017Updated 9 years ago
- Ghidra Analysis Enhancer 🐉☆313May 30, 2020Updated 5 years ago
- Debugger checks in 3 ways☆19Jan 25, 2018Updated 8 years ago
- Panda - is a set of utilities used to research how PsExec encrypts its traffic.☆12Apr 20, 2021Updated 4 years ago
- Dracula inspired theme for Ghidra☆12Dec 3, 2019Updated 6 years ago
- ☆97Feb 26, 2020Updated 6 years ago
- Ghidra Function ID dataset repository☆198May 30, 2020Updated 5 years ago
- A Ghidra headless analyzer tailored for Qt binary analysis☆75Oct 7, 2024Updated last year
- A collection of my Ghidra scripts☆101Sep 21, 2023Updated 2 years ago
- Retypd plugin for Ghidra reverse engineering framework from NSA☆27Jul 6, 2023Updated 2 years ago
- A repository of example plugins for Relyze Desktop.☆34Apr 17, 2020Updated 5 years ago
- A PCode Emulator for Ghidra.☆113Feb 7, 2021Updated 5 years ago
- Honeybag helps you to create 'bait archive' with any folders and files, notify you if someone accesses it☆16Sep 30, 2020Updated 5 years ago
- Ghidra C++ Class and Run Time Type Information Analyzer☆646Oct 1, 2023Updated 2 years ago
- Kernel Cache Decryption for iOS☆17Nov 16, 2021Updated 4 years ago
- ☆22Jul 6, 2018Updated 7 years ago
- WIP python3 plugin for x64dbg☆16Mar 31, 2021Updated 4 years ago
- Find strings in Go binaries☆55Sep 16, 2019Updated 6 years ago