DissectMalware / XLMMacroDeobfuscatorLinks
Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
☆583Updated last year
Alternatives and similar repositories for XLMMacroDeobfuscator
Users that are interested in XLMMacroDeobfuscator are comparing it to the libraries listed below
Sorting:
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆620Updated this week
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆713Updated 2 years ago
- PowerShell script for deobfuscating encoded PowerShell scripts☆425Updated 4 years ago
- Volatility plugin for extracts configuration data of known malware☆491Updated last year
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆745Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,097Updated last year
- Repository of YARA rules made by Trellix ATR Team☆608Updated 5 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆379Updated 3 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆448Updated 2 years ago
- Encyclopedia for Executables☆448Updated 3 years ago
- Malduck is your ducky companion in malware analysis journeys☆339Updated 2 months ago
- MBC content in markdown☆471Updated 2 months ago
- ☆782Updated 2 years ago
- Malware repository component for samples & static configuration with REST API interface.☆365Updated this week
- IOC from articles, tweets for archives☆315Updated last year
- Dynamic unpacker based on PE-sieve☆749Updated 2 months ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,186Updated last week
- Distributed malware processing framework based on Python, Redis and S3.☆435Updated this week
- c2 traffic☆189Updated 2 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆429Updated last year
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆181Updated last month
- Collection of private Yara rules.☆365Updated 3 weeks ago
- RDP Bitmap Cache parser☆559Updated 7 months ago
- Sophos-originated indicators-of-compromise from published reports☆626Updated 2 weeks ago
- ☆513Updated 10 months ago
- YARA malware query accelerator (web frontend)☆435Updated 5 months ago
- Live hunting of code injection techniques☆383Updated 6 years ago
- A collection of red team and adversary emulation resources developed and released by MITRE.☆517Updated 4 years ago
- Detect and respond to Cobalt Strike beacons using ETW.☆508Updated 3 years ago
- Online hash checker for Virustotal and other services☆834Updated 5 months ago