Fare9 / ANBU
ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
☆88Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for ANBU
- ☆26Updated 10 years ago
- IDA Pro resources, scripts, and configurations☆111Updated 8 months ago
- This IDAPython script tags subroutines according to their use of imported functions☆71Updated 3 years ago
- ☆99Updated 5 months ago
- Flare-On solutions☆36Updated 5 years ago
- ☆51Updated 6 years ago
- Parsers for custom malware formats ("Funky malware formats")☆92Updated 2 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆39Updated 5 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆71Updated 5 years ago
- A Fuzzer for Windows NDIS Drivers OID Handlers☆91Updated 3 years ago
- Use ltrace with pwnlib.tubes.process instances, useful for heap exploitation. Pwntools rocks!☆52Updated 6 years ago
- Use angr inside the radare2 debugger. Create an angr state from the current debugger state.☆34Updated 5 years ago
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆107Updated 4 years ago
- ☆91Updated 5 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 6 years ago
- A Python tool to generate ROP chains☆60Updated 6 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- An IDA Pro Plugin for embedding an IPython Kernel☆64Updated 5 years ago
- Automated library compilation and PDB annotation with CMake and IDA Pro☆20Updated 6 years ago
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- A set of scripts for a radare-based malware code analysis workflow☆67Updated 5 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆83Updated 2 years ago
- Static unpacker for FinSpy VM☆97Updated 3 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 2 years ago
- Binary Ninja Posters☆35Updated 4 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆22Updated 6 years ago
- HackSys Extreme Vulnerable Driver - Windows 10 x64 StackOverflow Exploit with SMEP Bypass☆61Updated 6 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆42Updated 11 months ago