K-atc / PEiD

Related projects ⓘ

Alternatives and complementary repositories for PEiD

• knowmalware / pehash
  Compilation of peHash implementations.
  ☆14Updated 5 years ago
• moyix / panda-malrec
  A system to record malware using PANDA
  ☆42Updated 5 years ago
• Cisco-Talos / CASC
  ☆43Updated 6 years ago
• djteller / MemoryAnalysis
  Automated Memory Analysis (Black Hat Arsenal 2014)
  ☆32Updated 10 years ago
• buffer / pylibemu
  A Libemu Cython wrapper
  ☆126Updated 11 months ago
• pfohjo / nitro
  KVM-based virtual machine introspection for malware analysis
  ☆27Updated 7 years ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• sec51 / clamav-yara
  Converts the Clamav Virus Database definitions to YARA rules [GOLANG]
  ☆52Updated 3 years ago
• icchy / tracecorn
  Windows API tracer for malware (oldname: unitracer)
  ☆116Updated 7 years ago
• Cisco-Talos / FIRST-server
  ☆32Updated 4 months ago
• AlienVault-OTX / yabin
  A Yara rule generator for finding related samples and hunting
  ☆157Updated 2 years ago
• GDATAAdvancedAnalytics / r2graphity
  Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators
  ☆31Updated 7 years ago
• spender-sandbox / cuckoomon-modified
  Modified edition of cuckoomon
  ☆48Updated 6 years ago
• mandiant / Reversing
  ☆110Updated 7 years ago
• eurecom-s3 / actaeon
  Memory forensics of virtualization environments
  ☆45Updated 10 years ago
• mandiant / flare-qdb
  Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
  ☆161Updated last year
• tildedennis / malware
  ☆41Updated 6 years ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆83Updated 2 years ago
• pinkflawd / r2graphity
  Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators
  ☆85Updated 7 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆84Updated 5 years ago
• tillmannw / swffile
  swffile.py - SWF file parser module in Python
  ☆28Updated 8 years ago
• REhints / BlackHat_2015
  Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis
  ☆66Updated 9 years ago
• tbarabosch / quincy
  Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"
  ☆70Updated 2 years ago
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆42Updated 8 years ago
• GlacierW / MBA
  Malware Behavior Analyzer
  ☆158Updated 7 years ago
• Cisco-Talos / locky
  ☆68Updated 7 years ago
• cysinfo / Exescan
  ExeScan is the FREE console based tool to detect anomalies in PE (Portable Executable) files. It quickly scans given executable file and …
  ☆20Updated 5 years ago
• lukaszbb / apt-analysis
  ☆49Updated 9 years ago
• DavidKorczynski / RePEconstruct
  ☆91Updated 8 years ago