Fare9 / elfparser_e
Example of an ELF parser to learn about the ELF format
☆10Updated 5 months ago
Alternatives and similar repositories for elfparser_e:
Users that are interested in elfparser_e are comparing it to the libraries listed below
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆34Updated last year
- A Unit-Based Symbolic Execution Method for Detecting Memory Corruption Vulnerabilities in Executable Codes☆43Updated last year
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Updated last year
- A Linux x86/x86-64 tool to trace registers and memory regions.☆37Updated 2 years ago
- Triton based symbolic emulator☆16Updated 2 years ago
- Native Rust bindings for @horsicq's Detect-It-Easy☆13Updated 2 months ago
- Rule Engine for Dynamic Malware Analysis and Research☆16Updated last week
- ☆11Updated 5 months ago
- Supporting Materials for “Symbolic Triage” blog post☆24Updated 2 years ago
- Python interface for Binexport, the Bindiff export format☆14Updated last month
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- Extract data of TTD trace file to a minidump☆28Updated last year
- Dynamic Taint Analysis versus Obfuscated Self-Checking☆16Updated 3 years ago
- ☆17Updated 2 years ago
- hypervisor enforced patch protection for the linux kernel with xen + libvmi, libvmi KASLR offset spoofer☆29Updated 11 months ago
- genpatch is IDA plugin that generates a python script for patching binary☆32Updated last year
- ☆16Updated 2 years ago
- Symbolic execution for RISC-V machine code based on the formal LibRISCV ISA model☆46Updated 2 months ago
- ☆23Updated last month
- Custom instruction length for hex-rays☆18Updated 3 months ago
- LLVM based devirtualization PoC’s.☆20Updated 3 years ago
- Python bindings for BochsCPU☆35Updated last month
- Binary Ninja plugin to perform automated analysis of Windows drivers☆17Updated 5 years ago
- A few examples of how to trap virtual memory access on Windows.☆29Updated 3 months ago
- ☆24Updated 3 years ago
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆17Updated last year
- EDR PoC WIP LLC☆11Updated last year
- ☆17Updated last month
- Obfuscat is a tool and framework for obfuscation with predictable size and runtime overhead.☆37Updated last year
- An example of how to use Microsoft Windows Warbird technology☆27Updated last year