NMHai / BE-PUMLinks
BE-PUM (Binary Emulation for PUshdown Model) is a project for analyzing and detecting binary files. Its main focus is on generating CFG (Control Flow Graph) of malware. This project was set out in 2013. It is under management by Dr. Nguyen Minh Hai, HoChiMinh University of Technology.
☆20Updated 8 years ago
Alternatives and similar repositories for BE-PUM
Users that are interested in BE-PUM are comparing it to the libraries listed below
Sorting:
- A framework for static analysis of ROP exploits and programs☆41Updated 6 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆57Updated 6 years ago
- Final project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).☆35Updated 8 years ago
- Using LibVMI to detect malware☆32Updated 3 years ago
- Security Evaluation of Dynamic Binary Instrumentation Engines☆81Updated 7 years ago
- Course sample for SMT-Based Binary Program Analysis training class☆32Updated 7 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆32Updated 7 years ago
- ROPChain generator.☆40Updated 7 years ago
- Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.☆72Updated 3 years ago
- Intel PT log analyzer With Parallel Processing And Basic Block Offset Caching Support☆71Updated 2 years ago
- PoC for a snapshot-based coverage-guided fuzzer targeting Windows kernel components☆68Updated 4 years ago
- Python based angr plug in for IDA Pro.☆35Updated 7 years ago
- Towards Generic Deobfuscation of Windows API Calls☆50Updated 6 years ago
- Implementation trade-offs in using Intel Pin for instruction tracing of complex programs☆15Updated 6 years ago
- Windows API tracer for malware (oldname: unitracer)☆120Updated 8 years ago
- A hypervisor or virtual machine monitor (VMM) fuzzer☆28Updated 5 years ago
- Unicorn PE function runner☆59Updated 8 years ago
- This repository contains the sources and documentation for the SWAPGS attack PoC (CVE-2019-1125)☆41Updated 6 years ago
- Yet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.☆34Updated 7 years ago
- A stateful fuzzing engine.☆45Updated 7 years ago
- Code for my blog post on using S2E for malware analysis☆25Updated 6 years ago
- SAFE embeddings to match functions in yara☆100Updated 5 years ago
- ☆53Updated 7 years ago
- ☆87Updated 10 years ago
- Dynamic analysis of binary programs to retrieve function-related information (arity, type of parameters, coupling).☆69Updated 8 years ago
- ☆53Updated 6 years ago
- Polymorphic VM and PoliCTF '17 reversing challenge.☆72Updated last year
- WINAFL for blackbox in-memory fuzzing (PIN)☆47Updated 6 years ago
- ☆41Updated 8 years ago
- MemSight: Rethinking Pointer Reasoning in Symbolic Execution (ASE 2017)☆25Updated last year