JPCERTCC / AutoYara4FLIRTLinks
☆15Updated last year
Alternatives and similar repositories for AutoYara4FLIRT
Users that are interested in AutoYara4FLIRT are comparing it to the libraries listed below
Sorting:
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆47Updated 6 months ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- Utilities for working with vivisect☆25Updated 2 months ago
- Static configuration extractor for the Karton framework☆10Updated 4 months ago
- ☆25Updated 7 months ago
- A small tool to unmap PE memory dumps.☆11Updated last year
- Dataset of packed ELF samples☆19Updated 2 years ago
- This repository contains an IDA processor for loading and disassembling compiled yara rules.☆41Updated 5 months ago
- Progress of learning kernel development☆14Updated 2 years ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- Code snippets for Qiling Tutorials☆20Updated 4 years ago
- A script to detect stack-strings by using emulation (leveraging Unicorn)☆35Updated last year
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 2 years ago
- yet another hidden LKM hunter☆23Updated last year
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- ☆52Updated 7 months ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- ☆28Updated 5 years ago
- ☆27Updated 6 months ago
- Small visualizator for PE files☆69Updated last year
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆10Updated 4 years ago
- RenameLocalVars is an IDA plugin that renames local variables to something easier to read.☆14Updated last year
- IDA Pro plugin to aid with the analysis of native IIS modules☆18Updated 10 months ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 2 years ago
- Currently proof-of-concept☆17Updated 3 years ago
- Radare2 Metadata Extraction to Elasticsearch☆22Updated last year
- ☆24Updated 5 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 4 years ago