Mipu94 / BroIDS_UnicornLinks
simple plugin to detect shellcode on Bro IDS with Unicorn
☆33Updated 8 years ago
Alternatives and similar repositories for BroIDS_Unicorn
Users that are interested in BroIDS_Unicorn are comparing it to the libraries listed below
Sorting:
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Updated 8 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- a collection of yara rules for binary analysis☆24Updated 8 years ago
- IDATACO IDA Pro Plugin☆47Updated 9 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Identify botnet panels with Ensembled Decision Trees☆18Updated 9 years ago
- Memory forensics of virtualization environments☆47Updated 10 years ago
- BinCrowd Plugin for IDA Pro☆43Updated 13 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 8 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"☆27Updated 6 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆37Updated 9 years ago
- Analysis PE file or Shellcode☆50Updated 9 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- Resolves DLL API entrypoints for a process w/ remote query capabilities.☆55Updated 8 years ago
- tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net☆33Updated last year
- Haskell parser for the REIL intermediate language (currently a work-in-progress)☆11Updated 7 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Command-line Interface for Binar.ly☆38Updated 8 years ago
- r2yara - Module for Yara using radare2 information☆36Updated last year
- ripPE - section extractor and profiler for PE file analysis☆32Updated 11 years ago
- Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation☆40Updated 8 years ago
- Binary Analysis Platform☆74Updated 11 years ago
- Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code☆51Updated 9 years ago
- ☆68Updated 8 years ago
- GSAudit at Symantec, ExeAudit at RIM, RECX Binary Assurance for Windows at Recx etc. - core library now WinBinaryAudit☆24Updated 10 years ago
- ☆19Updated 6 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 8 years ago
- Exploit Reliability Testing System☆35Updated 10 years ago