Malwation / Chiron-UnpackerLinks
Chiron Unpacker, developed by the Malwation MTR Team, is an Unpacker for Packers using the Assembly.Load function.
☆19Updated 8 months ago
Alternatives and similar repositories for Chiron-Unpacker
Users that are interested in Chiron-Unpacker are comparing it to the libraries listed below
Sorting:
- ☆37Updated 6 months ago
- Lena's scripts/code/resources for malware analysis☆27Updated last year
- Situational Awareness script to identify how and where to run implants☆52Updated 6 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 4 months ago
- ☆57Updated 2 months ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 3 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆44Updated last month
- OFFZONE 2024 Malware Persistence workshop☆19Updated 6 months ago
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆64Updated last year
- ☆55Updated 8 months ago
- ☆133Updated 3 months ago
- "Service-less" driver loading☆155Updated 6 months ago
- A simple commandline application to automatically decrypt strings from Obfuscator protected binaries☆46Updated last year
- ☆67Updated 4 months ago
- ☆24Updated 4 months ago
- POC of GITHUB simple C2 in rust☆53Updated 5 months ago
- Construct the payload at runtime using an array of offsets☆63Updated last year
- ☆38Updated 4 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆83Updated 3 weeks ago
- A collection of position independent coding resources☆79Updated 4 months ago
- Configuration Extractors for Malware☆106Updated 2 months ago
- Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…☆47Updated this week
- NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg☆46Updated last year
- Ghosting-AMSI☆17Updated last month
- ☆107Updated 7 months ago
- ☆124Updated 2 weeks ago
- This is way to load a shellcode, and obfuscate it, so it avoids scantime detection.☆69Updated last month
- Convert your shellcode into an ASCII string☆58Updated this week
- Malleable shellcode loader written in C and Assembly utilizing direct or indirect syscalls for evading EDR hooks☆110Updated 6 months ago
- ☆18Updated last week