Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
☆165Oct 24, 2022Updated 3 years ago
Alternatives and similar repositories for batch_deobfuscator
Users that are interested in batch_deobfuscator are comparing it to the libraries listed below
Sorting:
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Sep 18, 2018Updated 7 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Jul 13, 2018Updated 7 years ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆16Jun 20, 2016Updated 9 years ago
- This is a python version of samesame repo to generate homograph strings☆24Aug 22, 2018Updated 7 years ago
- Emu-strings project - JScript/VBScript automated dropper analysis system☆18Mar 25, 2021Updated 4 years ago
- A tool for detecting VBA stomping.☆102Aug 4, 2022Updated 3 years ago
- Royal Road RTF Weaponizer object decoder☆24Sep 26, 2024Updated last year
- Malware sample exchange system and API intended for Anti-Virus companies and researchers.☆16Aug 19, 2024Updated last year
- most powerful batch obfuscator☆47Jan 2, 2023Updated 3 years ago
- Python emulator for Excel XLM macros.☆18May 25, 2020Updated 5 years ago
- xlrd2 is a variant of xlrd that is actively maintained☆23Aug 1, 2024Updated last year
- isodump - ISO dump utility☆41Jun 9, 2019Updated 6 years ago
- Standalone CIRCLean/KittenGroomer code to sanitize emails.☆11Aug 9, 2018Updated 7 years ago
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- Next major release of sniffMyPackets - Now with added packet loving☆12Mar 19, 2015Updated 11 years ago
- spoof an extension of any file by using U+202E Unicode character☆15Nov 5, 2021Updated 4 years ago
- Unpacking tool for the zipExec Crypter☆14Oct 30, 2021Updated 4 years ago
- ReviveIT (revit) is a proof of concept file recovery tool (carver)☆13Dec 3, 2020Updated 5 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Parses the WMI object database....looking for persistence☆34Dec 12, 2019Updated 6 years ago
- Vaccine for STOP/DJVU ransomware, prevents encryption☆25Oct 30, 2025Updated 4 months ago
- Cheat-Sheet with events too look out for when analysing malicious Office documents☆19Oct 21, 2017Updated 8 years ago
- bad stuffs by bad guys☆49Jul 28, 2022Updated 3 years ago
- Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.☆51Apr 9, 2019Updated 6 years ago
- Dump configuration from STOP Djvu ransomware sample☆12Feb 19, 2020Updated 6 years ago
- ☆15Jun 5, 2019Updated 6 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆264Aug 23, 2023Updated 2 years ago
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆12Dec 8, 2020Updated 5 years ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆172Jul 20, 2024Updated last year
- Python-based cloud node for local use☆11Mar 7, 2018Updated 8 years ago
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,119Jul 10, 2024Updated last year
- Windows registry samples☆24Nov 18, 2018Updated 7 years ago
- An architecture plugin for binary ninja to disassemble raw python bytecode☆29Nov 12, 2017Updated 8 years ago
- ☆19Sep 21, 2020Updated 5 years ago
- A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python…☆143May 28, 2023Updated 2 years ago
- Extract AutoIt scripts embedded in PE binaries☆235Mar 7, 2026Updated last week
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago