Big5-sec / pcode2codeLinks
a vba pcode decompiler based on pcodedmp
☆109Updated 3 years ago
Alternatives and similar repositories for pcode2code
Users that are interested in pcode2code are comparing it to the libraries listed below
Sorting:
- A VBA p-code disassembler☆470Updated 3 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- A tool for detecting VBA stomping.☆100Updated 2 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- Generating YARA rules based on binary code☆210Updated 3 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆165Updated this week
- ☆104Updated last year
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- Official VirusTotal plugin for IDA Pro☆157Updated last year
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- API Logger for Windows Executables☆78Updated 4 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆119Updated 6 years ago
- A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL☆135Updated last year
- Parse .NET executable files.☆75Updated 2 weeks ago
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 2 years ago
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆183Updated 4 years ago
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- Windows Crypto API compatible decryption/encryption for python☆49Updated 2 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆108Updated 4 years ago
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- Windows API tracer for malware (oldname: unitracer)☆118Updated 7 years ago
- A binary analysis framework☆132Updated 4 years ago
- ☆110Updated 4 years ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆161Updated 5 months ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- ☆71Updated last year
- A golang CLI tool to download malware from a variety of sources.☆146Updated last year
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆65Updated 3 years ago