AllsafeCyberSecurity / Ghidra_Data_Type
for Windows Malware Analysis
☆12Updated 4 years ago
Alternatives and similar repositories for Ghidra_Data_Type:
Users that are interested in Ghidra_Data_Type are comparing it to the libraries listed below
- Function ID for Malware Analysis☆11Updated 4 years ago
- ☆71Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- ☆22Updated 4 years ago
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆47Updated 4 months ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- ☆28Updated 4 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆36Updated 7 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 7 months ago
- A python script that can be used to scan data within in an IDB using Yara.☆22Updated 6 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆40Updated 5 years ago
- IDAPython scripts☆15Updated 7 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated 10 months ago
- TrashDBG the world's worse debugger☆23Updated 3 years ago
- IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.☆18Updated 6 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated last year
- ☆19Updated last week
- Extract data of TTD trace file to a minidump☆28Updated last year
- Scripts to aid analysis of files obfuscated with ScatterBee.☆20Updated 2 years ago
- Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)☆16Updated 2 months ago
- Tools for inspecting YARA bytecode☆15Updated 4 years ago
- Flare-On solutions☆36Updated 5 years ago
- Memory Loader Open Source Project by Sentinel-Labs.☆24Updated 4 years ago
- ☆31Updated 3 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago