AllsafeCyberSecurity / Ghidra_Data_Type
for Windows Malware Analysis
☆11Updated 4 years ago
Related projects: ⓘ
- ☆21Updated 3 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆21Updated 2 years ago
- docker-compose to deploy CTFd w/ ghidragolf configurations☆12Updated last year
- An Integrity-Check Monitoring Pintool☆56Updated 3 years ago
- Here are some of my malware reversing papers that I will be publishing☆30Updated 2 years ago
- ☆66Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 2 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆50Updated 3 years ago
- ☆28Updated 4 years ago
- ☆36Updated 3 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14Updated 4 years ago
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆38Updated 7 months ago
- Decode Royal Road RTF Weaponizer 8.t object☆22Updated 2 months ago
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆21Updated 6 years ago
- IDAPython scripts☆15Updated 7 years ago
- ☆17Updated this week
- ☆36Updated 4 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- SPI flash read MitM attack PoC☆34Updated 2 years ago
- Utilities for working with vivisect☆21Updated this week
- Flare-On solutions☆36Updated 4 years ago
- FindCrypt for Ghidra written in Python☆25Updated 4 years ago
- ☆20Updated 3 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 5 years ago
- ☆13Updated 3 years ago
- A wrapper for capstone for bearparser☆13Updated last year
- findLoop - find possible encryption/decryption or compression/decompression code☆25Updated 5 years ago