KuechA / pestudio-cli
Python tool to analyze PE file for patterns used by malware
☆21Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for pestudio-cli
- Static Decryptor for IcedID Malware☆18Updated 2 years ago
- Autopsy plugin to extract information from the 'Your Phone' Windows 10 App☆13Updated 3 years ago
- Ruby script to automate metasploit scanning, exploitation, and post-exploitation☆19Updated 4 years ago
- ☆12Updated 3 years ago
- Autopsy Module to analyze Registry Hives☆13Updated 2 years ago
- Public repository for Red Canary Research☆34Updated 4 years ago
- Scripts to help automate tedious red teaming enumeration and tasks.☆16Updated 4 years ago
- Sp00fer blog post -☆25Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- Data to test capa's code and rules.☆39Updated 3 weeks ago
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆49Updated last year
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆53Updated 5 months ago
- A PowerShell Module Dedicated to Reverse Engineering☆14Updated 4 years ago
- This is the official repository for Basic Malware Analysis Course☆19Updated 2 years ago
- Python based CLI for MalwareBazaar☆36Updated last week
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆30Updated 8 months ago
- Parser for Sdba memory pool tags☆17Updated 3 years ago
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆11Updated 5 years ago
- Userland API monitor for threat hunting☆55Updated 4 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆43Updated 3 years ago
- The Catherine Framework is a general-purpose cybersecurity framework built to provide extended support for defense operations.☆16Updated 6 months ago
- isodump - ISO dump utility☆38Updated 5 years ago
- Automated Static Analysis Framework☆10Updated 2 years ago
- Help deobfuscate VBScript☆15Updated 2 years ago
- SSH Honeypot that gathers creds and attempted commands☆19Updated 3 years ago
- ASLR Evasion, Egghunters, SEH Overwrites☆29Updated 3 years ago
- ☆14Updated 2 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆29Updated last year
- Checks for search order privilege escalation vectors in system environment, system shared objects and executable files in $PATH.☆17Updated 3 years ago
- Collection of my own detection rules☆14Updated 8 months ago