AndreaNaspi / WhiteRabbitTracker
WhiteRabbitTracker: Analyzing malware evasions with information flow tracking
☆17Updated 3 years ago
Alternatives and similar repositories for WhiteRabbitTracker:
Users that are interested in WhiteRabbitTracker are comparing it to the libraries listed below
- Forecasting Malware Capabilities From Cyber Attack Memory Images☆32Updated 2 years ago
- Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.☆72Updated 2 years ago
- Effects of packers on machine-learning-based malware classifiers that use only static analysis☆85Updated 9 months ago
- The Tangled Genealogy of IoT Malware☆12Updated 4 years ago
- automated-arancino is a lightweight analysis framework to automate malware experiments.☆15Updated 7 years ago
- Robust Automated Malware Unpacker☆84Updated last year
- Research tool able to detect and mitigate evasion techniques used by malware in-the-wild☆11Updated 2 years ago
- Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)☆23Updated 3 years ago
- A framework for static analysis of ROP exploits and programs☆40Updated 5 years ago
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆111Updated 2 weeks ago
- Port of the binary diffing library, diaphora, for radare2 and mariadb☆50Updated last year
- PMP: Cost-Effective Forced Execution with Probabilistic Memory Pre-Planning☆10Updated 4 years ago
- Gadget displacement on top of IPR (In-Place Randomization) against Code Reuse Attack☆26Updated 8 years ago
- This repository contains dynamic and static tools for IoT malware analysis☆21Updated 2 years ago
- Automated Yara Rule generation using Biclustering☆66Updated 3 years ago
- Collection of DBI evasion techniques☆14Updated 3 years ago
- ☆58Updated 3 years ago
- The prototype system of paper Similarity Metric Method for Binary Basic Blocks of Cross-Instruction Set Architecture.☆28Updated 2 years ago
- Library to hide DBI artifacts when using Intel Pin. Code from the ASIA CCS 2019 paper "SoK: Using Dynamic Binary Instrumentation for Secu…☆22Updated 5 years ago
- Cross-Architecture Function Similarity Search Model - https://arxiv.org/abs/2310.03605☆14Updated last year
- [SmartCom2017] An Effective Malware Detection based on Behaviour and Data Feature☆19Updated 6 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆90Updated 2 weeks ago
- ☆9Updated 7 years ago
- BE-PUM (Binary Emulation for PUshdown Model) is a project for analyzing and detecting binary files. Its main focus is on generating CFG (…☆19Updated 7 years ago
- suite of binaries used to test function identification☆28Updated 7 years ago
- �☆24Updated 2 years ago
- Discovering Malicious Functionality through Binary Reconstruction☆53Updated 3 years ago
- Extensible Platform for Malware Analysis☆17Updated 4 years ago
- A curated resource list of adversarial attacks and defenses for Windows PE malware detection.☆70Updated 2 years ago
- ☆35Updated last year