ANSSI-FR / bootcode_parser
A boot record parser that identifies known good signatures for MBR, VBR and IPL.
☆98Updated last month
Alternatives and similar repositories for bootcode_parser:
Users that are interested in bootcode_parser are comparing it to the libraries listed below
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 7 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 5 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- PE Import Hash Generator☆76Updated 7 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- ☆68Updated 7 years ago
- Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"☆41Updated 8 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- ☆109Updated 7 years ago
- ☆44Updated 6 years ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 5 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- ☆134Updated 6 years ago
- Lazy Office Analyzer☆120Updated 8 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆109Updated 4 years ago
- Modified edition of cuckoomon☆49Updated 6 years ago
- Cryptowall Tooling & Information☆35Updated 9 years ago
- A collection of scripts to initialize a windows VM to run all the malwares!☆106Updated 5 years ago
- QEMU with rVMI extensions☆25Updated 7 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 7 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆42Updated 8 years ago
- POLAR☆73Updated 6 years ago
- Emulating Virtual Environment to stay protected against advanced malware☆100Updated 6 years ago
- Spacebin is a proof-of-concept malware that exfiltrates data (from No Direct Internet Access environments) via triggering AV on the endpo…☆85Updated 7 years ago
- Your bag of handy codes for malware researchers☆120Updated 5 years ago
- ☆42Updated 6 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated last year
- Tool to make in memory man in the middle☆124Updated 6 years ago
- unXOR will search a XORed file and try to guess the key using known-plaintext attacks.☆142Updated 4 years ago