Maff1t / InjectionTracer
PINTool to help analyzing malware that uses process injection
☆13Updated 2 years ago
Related projects: ⓘ
- ☆22Updated 3 months ago
- Configuration Extractors for Malware☆51Updated 2 weeks ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- ☆33Updated last year
- ☆25Updated 10 months ago
- An injector that use PT_LOAD technique☆12Updated last year
- Tools developed by the Zscaler ThreatLabz Threat Intelligence team☆59Updated 4 months ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆40Updated 3 weeks ago
- ☆22Updated 2 years ago
- ☆28Updated last year
- Here are some of my malware reversing papers that I will be publishing☆30Updated 2 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated last year
- ☆26Updated last month
- A scanner that files with compromised or untrusted code signing certificates written in python.☆65Updated last year
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆19Updated 3 years ago
- Golang bindings for PE-sieve☆40Updated 10 months ago
- ☆18Updated last month
- Configuration Extractor for BlackCat Ransomware☆30Updated 2 years ago
- Exploits of different CVE IDs (CVE-2021-37910, CVE-2021-40288, CVE-2021-41435, CVE-2021-41436, CVE-2021-41437, CVE-2021-41441, CVE-2021-4…☆16Updated last year
- Unpacker and Config Extractor for managed Redline Stealer payloads☆36Updated last year
- ☆18Updated 4 years ago
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆53Updated 4 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆80Updated last year
- ☆36Updated 7 months ago
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- Dataset of packed ELF samples☆15Updated last year
- ☆19Updated this week
- The AMSI server for Avred☆23Updated last year
- A small utility to deal with malware embedded hashes.☆48Updated last year
- ☆17Updated this week