Matmaus / LnkParse3Links
Windows Shortcut file (LNK) parser
☆102Updated last month
Alternatives and similar repositories for LnkParse3
Users that are interested in LnkParse3 are comparing it to the libraries listed below
Sorting:
- Dump quarantined files from Windows Defender☆67Updated 3 years ago
- Repository of Yara Rules☆123Updated last month
- ☆109Updated last month
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆38Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆184Updated 2 years ago
- Powershell script deobfuscation using AST in Python☆72Updated last month
- Windows symbol tables for Volatility 3☆90Updated last year
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆212Updated last year
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆220Updated 2 years ago
- ☆20Updated 3 years ago
- Configuration Extractors for Malware☆117Updated 6 months ago
- ☆254Updated last year
- A guide on how to write fast and memory friendly YARA rules☆153Updated 8 months ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆124Updated last year
- A C# based tool for analysing malicious OneNote documents☆116Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆104Updated 6 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆165Updated last year
- Collection of rules created using YARA-Signator over Malpedia☆140Updated 11 months ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆203Updated this week
- RegRipper4.0☆72Updated 2 months ago
- ☆203Updated 11 months ago
- Powershell Linter☆84Updated this week
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Updated last year
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆248Updated 6 months ago
- Rules shared by the community from 100 Days of YARA 2024☆86Updated 9 months ago
- A python library to parse OneNote (.one) files☆137Updated last year
- A specification and style guide for YARA rules☆59Updated last year
- Python tool to check rootkits in Windows kernel☆201Updated 2 months ago
- ☆242Updated 4 months ago