DissectMalware / batch_deobfuscator
Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
☆158Updated 2 years ago
Alternatives and similar repositories for batch_deobfuscator:
Users that are interested in batch_deobfuscator are comparing it to the libraries listed below
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆294Updated 2 years ago
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆346Updated 3 months ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆176Updated 3 months ago
- Extract AutoIt scripts embedded in PE binaries☆182Updated 9 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- Dynamic unpacker based on PE-sieve☆725Updated last month
- Code snips and notes☆137Updated 3 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆164Updated 2 weeks ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆160Updated 3 weeks ago
- A golang CLI tool to download malware from a variety of sources.☆143Updated last year
- Expriments☆453Updated 6 months ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆205Updated 2 years ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆128Updated last year
- A more stealthy variant of "DLL hollowing"☆347Updated last year
- Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers t…☆455Updated 3 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆180Updated 3 years ago
- ☆105Updated last year
- Killing your preferred antimalware by abusing native symbolic links and NT paths.☆358Updated 3 years ago
- Easy way to obfuscuate batch files (Windows)☆146Updated 2 years ago
- Demos of various (also non standard) persistence methods used by malware☆221Updated 2 years ago
- MalUnpack companion driver☆98Updated 10 months ago
- ☆134Updated last month
- Assortment of hashing algorithms used in malware☆357Updated 2 weeks ago
- Research on Anti-malware and other related security solutions☆258Updated 4 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆114Updated last year
- Personal research and publication on malware families☆137Updated 3 months ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆405Updated 9 months ago
- The Windows Malware Analysis Reversing Core Tools☆94Updated 4 years ago
- Unpacker and Config Extractor for managed Redline Stealer payloads☆41Updated 2 years ago
- PoC Thread Execution Hijacking for Win32 Code Injection☆176Updated 8 months ago