Big5-sec / pcode2code
a vba pcode decompiler based on pcodedmp
☆106Updated 3 years ago
Related projects: ⓘ
- A VBA p-code disassembler☆450Updated 3 years ago
- A tool for detecting VBA stomping.☆95Updated 2 years ago
- ☆107Updated 4 years ago
- Parsers for custom malware formats ("Funky malware formats")☆92Updated 2 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆57Updated 3 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆133Updated this week
- Windows Crypto API compatible decryption/encryption for python☆47Updated last year
- ☆97Updated 10 months ago
- A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL☆127Updated 5 months ago
- ☆68Updated 2 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆177Updated 3 years ago
- FLARE Kernel Shellcode Loader☆176Updated 5 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆83Updated 2 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆73Updated 9 years ago
- Official VirusTotal plugin for IDA Pro☆154Updated 8 months ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆155Updated last month
- An IDA Pro extension for easier (malware) reverse engineering☆109Updated 2 years ago
- Robust Automated Malware Unpacker☆84Updated last year
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆115Updated 5 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 7 years ago
- analysis of visual basic code☆39Updated 6 years ago
- Driver Initial Reconnaissance Tool☆119Updated 4 years ago
- This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…☆269Updated 4 years ago
- Extract AutoIt scripts embedded in PE binaries☆160Updated 2 months ago
- ☆66Updated last year
- API Logger for Windows Executables☆77Updated 3 years ago
- ☆213Updated 6 years ago
- Parse .NET executable files.☆72Updated 5 months ago
- Process Hollowing for 32 bit and 64 bit☆78Updated 6 years ago