AllsafeCyberSecurity / malware-analysis-at-scale-defeating-emotet-by-ghidraLinks
Ghidra Script for automated analysis of EMOTET
☆17Updated 4 years ago
Alternatives and similar repositories for malware-analysis-at-scale-defeating-emotet-by-ghidra
Users that are interested in malware-analysis-at-scale-defeating-emotet-by-ghidra are comparing it to the libraries listed below
Sorting:
- Imphash-like calculation on Golang binaries☆49Updated 2 years ago
- ☆22Updated 7 months ago
- RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.☆72Updated 2 years ago
- ETW forensic tool for Volatility3 plugin☆15Updated 6 months ago
- CDIR Analyzer - parsers for data collected by CDIR Collector☆18Updated last year
- Lazarus analysis tools and research report☆56Updated last year
- JPCERT/CC public YARA rules repository☆106Updated 5 months ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- R-CSIRT Linux Triage tool☆39Updated 6 years ago
- Collection of Malware Lures☆23Updated 3 years ago
- ☆34Updated 2 years ago
- 分析ツール結果シート☆19Updated 7 years ago
- Surface Analysis System on Cloud☆19Updated last year
- Alternative YARA scanning engine☆70Updated 2 years ago
- A small utility to deal with malware embedded hashes.☆51Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆43Updated 2 years ago
- Malware Configuration Extraction Modules☆50Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- Radare2 Metadata Extraction to Elasticsearch☆22Updated last year
- ☆23Updated 2 years ago
- Honeybag helps you to create 'bait archive' with any folders and files, notify you if someone accesses it☆16Updated 4 years ago
- ☆15Updated 2 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 8 months ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated 2 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Updated 2 years ago
- ☆22Updated last year
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago