DissectMalware / batch_deobfuscator
Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
☆154Updated 2 years ago
Alternatives and similar repositories for batch_deobfuscator:
Users that are interested in batch_deobfuscator are comparing it to the libraries listed below
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆291Updated 10 months ago
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆283Updated last year
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆112Updated last year
- Extract AutoIt scripts embedded in PE binaries☆178Updated 6 months ago
- Dynamic unpacker based on PE-sieve☆688Updated 2 weeks ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆197Updated 2 years ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆172Updated last month
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆178Updated 2 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆394Updated 6 months ago
- Personal research and publication on malware families☆137Updated 3 weeks ago
- ☆131Updated last year
- Fileless attack with persistence☆335Updated last month
- Packer (actually a crypter) for antivirus evasion implemented for windows PE files (BSc-Thesis)☆103Updated 4 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆159Updated last week
- Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs☆720Updated 10 months ago
- c2 traffic☆189Updated last year
- Research on Anti-malware and other related security solutions☆259Updated 4 years ago
- Demos of various (also non standard) persistence methods used by malware☆219Updated last year
- API Logger for Windows Executables☆78Updated 4 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆250Updated last year
- Expriments☆455Updated 3 months ago
- Win 10/11 related research☆181Updated last year
- Official VirusTotal plugin for IDA Pro☆156Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…��☆147Updated last week
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆729Updated 3 years ago
- Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted fi…☆638Updated 10 months ago
- Easy way to obfuscuate batch files (Windows)☆138Updated 2 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆914Updated 2 years ago
- A Windows kernel-mode rootkit that abuses legitimate communication channels to control a machine.☆690Updated 4 years ago