CrySyS / membrane
Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
☆42Updated 8 years ago
Alternatives and similar repositories for membrane:
Users that are interested in membrane are comparing it to the libraries listed below
- Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"☆41Updated 8 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Memory forensics of virtualization environments☆46Updated 10 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆36Updated 9 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net☆33Updated last year
- A ready to deploy docker container for a fresh sandbox for on-the-fly malware analysis☆43Updated 7 years ago
- IDATACO IDA Pro Plugin☆47Updated 8 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 7 years ago
- Simple shellcode decoder using unicorn-engine☆99Updated 9 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Cryptowall Tooling & Information☆35Updated 9 years ago
- Volatility Plugins☆21Updated 10 years ago
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- This repository contains the slides and content for the malware unpacking training given at r2con 2017☆50Updated 7 years ago
- ☆34Updated 7 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- A set of scripts for a radare-based malware code analysis workflow☆67Updated 6 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation☆40Updated 8 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 5 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- ripPE - section extractor and profiler for PE file analysis☆32Updated 10 years ago
- Automated memory forensics analysis☆33Updated 5 years ago
- Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"☆27Updated 5 years ago
- Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code☆51Updated 9 years ago
- Download all of Microsoft's security updates and symbols☆42Updated 9 years ago
- ☆19Updated 6 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago