Abyss-emmm / goparse
parse golang bin
☆36Updated 2 years ago
Alternatives and similar repositories for goparse:
Users that are interested in goparse are comparing it to the libraries listed below
- Yet Another Golang binary parser for IDAPro☆44Updated last month
- hutrace☆24Updated 2 years ago
- Ida pro plugin. The antiVM aims to quickly identify anti-virtual machine and anti-sandbox behavior. This can speed up malware analysis.☆38Updated 2 years ago
- Changes handle's access rights using DKOM with a vulnerable driver☆25Updated 7 years ago
- ☆26Updated last year
- Win7内核私有符号结构转储☆67Updated 3 years ago
- IDA plugin for COM☆47Updated 2 years ago
- 大数字驱动逆向代码☆71Updated last year
- 基于UC的启发式杀毒引擎[还没做完]☆33Updated 3 years ago
- 关于intel和amd指令行为不一样这件事☆60Updated 2 years ago
- ollvm de-obfuscator☆59Updated 3 years ago
- Set of IDA Pro scripts for parsing GoLang types information stored in compiled binary☆15Updated 4 years ago
- Set of IDA Pro scripts for parsing GoLang types information stored in compiled binary(support go 1.20 but no go 1.18)☆25Updated last year
- ☆31Updated 3 years ago
- 用于存放IDA的研究资料和文档☆93Updated 3 years ago
- 一个用来做windows内核hook的框架☆83Updated 10 months ago
- 反射式注入☆27Updated 5 years ago
- ☆18Updated 3 years ago
- 跨平台模拟执行unicorn框架基于Qemu的TCG模式(Tiny Code Generator),以无硬件虚拟化支持方式实现全系统的虚拟化,支持跨平台和架构的CPU指令模拟,本文讨论是一款笔者的实验性项目采用Windows Hypervisor Platform虚拟机模式…☆65Updated last year
- ☆82Updated 4 years ago
- ida提取特征码脚本☆55Updated 5 years ago
- IDA高级技巧 API符号自动识别库 IDASignMaker☆128Updated 4 years ago
- windows下做本地或远程的磁盘镜像的工具,可输出vmdk☆27Updated 2 months ago
- vmp2.x devirtualization☆68Updated 3 months ago
- sc4cpp is a shellcode framework based on C++☆88Updated 3 years ago
- 使用 Intel 虚拟化特性实现应用层HOOK☆60Updated 2 months ago
- ☆23Updated 2 years ago
- 轻量级自动分析病毒程序调用上下文、游戏反调试实现技术平台☆99Updated 4 years ago
- Call NtCreateUserProcess directly as normal.☆68Updated 2 years ago
- PEBFake(修改PEB 伪装当前进程路径、参数等)☆50Updated 4 years ago