GDATASoftwareAG / TypeRefHasherLinks
CLI tool to compute the TypeRefHash for .NET binaries.
☆19Updated 3 years ago
Alternatives and similar repositories for TypeRefHasher
Users that are interested in TypeRefHasher are comparing it to the libraries listed below
Sorting:
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆32Updated 4 years ago
- ☆33Updated 3 years ago
- Help deobfuscate VBScript☆16Updated 3 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 4 years ago
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Updated 2 years ago
- ☆12Updated 4 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 3 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- Collection of my own detection rules☆20Updated 3 months ago
- The Multiplatform Linux Sandbox☆16Updated last year
- A set of tools for collecting forensic information☆26Updated 5 years ago
- Windows Event Log Knowledge Base☆26Updated 11 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Specialized tool to dump Position Independent Code.☆22Updated 5 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 4 years ago
- Identifies metadata of .NET binary files.☆21Updated last year
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆15Updated 5 years ago
- Repository for LNK stuff☆31Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- Documentation and parsers for different anti-virus quarantine formats.☆42Updated 4 years ago
- Small visualizator for PE files☆70Updated 2 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated last year
- Indicators of Normality☆11Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 4 years ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Updated 6 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations☆12Updated 2 years ago
- Dumping credentials through windbg and pykd☆41Updated 2 years ago
- ☆23Updated 4 years ago