Big5-sec / pcode2codeLinks
a vba pcode decompiler based on pcodedmp
☆109Updated 4 years ago
Alternatives and similar repositories for pcode2code
Users that are interested in pcode2code are comparing it to the libraries listed below
Sorting:
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 4 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆121Updated 6 years ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆162Updated 9 months ago
- Transfer EIP control to shellcode during malware analysis investigation☆77Updated 10 years ago
- ☆71Updated 2 years ago
- A VBA p-code disassembler☆476Updated 4 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Generating YARA rules based on binary code☆215Updated 3 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆68Updated 4 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆85Updated 3 years ago
- A simple utility to list all methods of a given .NET Assembly and to invoke them☆74Updated 4 years ago
- Official VirusTotal plugin for IDA Pro☆170Updated last week
- Tools for instrumenting Windows Defender's mpengine.dll☆304Updated 6 years ago
- Set of antianalysis techniques found in malware☆130Updated 2 years ago
- FLARE Kernel Shellcode Loader☆179Updated 6 years ago
- Driver Initial Reconnaissance Tool☆123Updated 5 years ago
- My repository to upload drivers from different books and all the information related to windows internals.☆157Updated 6 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆279Updated 9 months ago
- ☆120Updated 5 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆108Updated 4 years ago
- An IDA Pro extension for easier (malware) reverse engineering☆114Updated 3 years ago
- API Logger for Windows Executables☆79Updated 4 years ago
- Capa analysis importer for Ghidra.☆62Updated 4 years ago
- The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…☆151Updated 5 years ago
- IDA python plugin to scan binary with Yara rules☆178Updated last year
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆255Updated 2 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆140Updated 2 years ago
- Various Yara signatures (possibly to be included in a release later).☆87Updated 6 years ago