My collection of scripts for Ghidra (https://github.com/NationalSecurityAgency/ghidra)
☆10Sep 13, 2020Updated 5 years ago
Alternatives and similar repositories for ghidra-scripts
Users that are interested in ghidra-scripts are comparing it to the libraries listed below
Sorting:
- Python 3 library to build YARA rules.☆13Oct 24, 2021Updated 4 years ago
- ☆73Sep 4, 2023Updated 2 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Jan 31, 2024Updated 2 years ago
- Function ID for Malware Analysis☆13Jul 6, 2020Updated 5 years ago
- XEX2 tooling for Ghidra.☆11Mar 6, 2019Updated 7 years ago
- Experimental linux kernel module to mirror evdev inputs☆16Aug 1, 2020Updated 5 years ago
- Emotion Engine support for ghidra☆10Mar 20, 2019Updated 7 years ago
- A Dockerized Ghidra Server☆15Jan 9, 2021Updated 5 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated 2 months ago
- Keystone security monitor library for opensbi (Discountinued after monorepo-izing)☆13Oct 28, 2022Updated 3 years ago
- this is Crytolocket Malware Domain Generation Algorithm (DGA). Cryptolocker uses DGA to generate 1000 to 10000 unique domain names for it…☆14Sep 5, 2016Updated 9 years ago
- Capa analysis importer for Ghidra.☆64Dec 2, 2020Updated 5 years ago
- ☆17Aug 15, 2023Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- LERN GHIDRA☆94Aug 14, 2025Updated 7 months ago
- Import an x64dbg database into a Ghidra Project☆22Aug 22, 2019Updated 6 years ago
- Simple helpdesk solution for Django☆16Sep 8, 2019Updated 6 years ago
- llolbas is a repo containing a localized and off-line version of the ever popular Living Off the Land Binaries and Scripts (LOLBAS) proje…☆11May 1, 2023Updated 2 years ago
- ☆24Mar 12, 2019Updated 7 years ago
- Ghidra loader module for the Mobicore trustlet and driver binaries☆27Nov 2, 2019Updated 6 years ago
- Ghidra script to find unique function signature☆18May 7, 2019Updated 6 years ago
- Windows privileges add to the complexity of Windows user permissions. Each additional user added to a group could lead to a domain compro…☆10Mar 2, 2018Updated 8 years ago
- Steezy - Ghetto Yara Generation☆15Mar 27, 2023Updated 2 years ago
- Exploit generator for Intel ME 11 buffer overflow☆33Nov 14, 2019Updated 6 years ago
- Ghidra scripts for malware analysis☆102Jan 11, 2024Updated 2 years ago
- Module for FoundryVTT that scales the grid.☆10Nov 7, 2023Updated 2 years ago
- Auxiliary scripts for Incident Response with ELK☆11Oct 7, 2015Updated 10 years ago
- Triage automation for suspect URLs☆13Jul 23, 2019Updated 6 years ago
- Toshiba MeP-c4 for Ghidra☆22May 29, 2019Updated 6 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- ☆53Nov 22, 2023Updated 2 years ago
- ☆35Jun 4, 2018Updated 7 years ago
- Splunk integration with MISP☆12Apr 14, 2018Updated 7 years ago
- RCS Agent for Windows Mobile☆22Jul 6, 2015Updated 10 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆17Oct 8, 2016Updated 9 years ago
- An API connector for the Office 365 Management API and the Elastic Stack☆20Aug 9, 2018Updated 7 years ago
- Use https://github.com/mborgerson/ghidra-xbe instead☆21Mar 13, 2019Updated 7 years ago
- ☆11Oct 1, 2021Updated 4 years ago