NozomiNetworks / upx-recovery-tool

Related projects ⓘ

Alternatives and complementary repositories for upx-recovery-tool

• alexander-hanel / msdocsviewer
  msdocsviewer is a simple tool that parses Microsoft's win32 API and driver documentation to be used within IDA.
  ☆148Updated 10 months ago
• Sentinel-One / peafl64
  Static Binary Instrumentation tool for Windows x64 executables
  ☆180Updated 3 weeks ago
• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆80Updated last year
• malwarefrank / dnfile
  Parse .NET executable files.
  ☆74Updated last week
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 2 years ago
• junron / auto-enum
  IDA/Binary Ninja Plugin to automatically identify and set enums for standard functions
  ☆355Updated 3 weeks ago
• thalium / symless
  ☆182Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated last year
• N0fix / rustbinsign
  Rust symbol recovery tool
  ☆31Updated 4 months ago
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆213Updated last year
• LAC-Japan / IDA_Plugin_AntiDebugSeeker
  Automatically identify and extract potential anti-debugging techniques used by malware.
  ☆132Updated last week
• sha0coder / scemu
  x86 malware emulator
  ☆201Updated this week
• N0fix / rustbininfo
  Get information about stripped rust executables
  ☆22Updated last month
• waleedassar / SimpleNTSyscallFuzzer
  ☆132Updated 9 months ago
• zeze-zeze / ioctlance
  A tool that is used to hunt vulnerabilities in x64 WDM drivers
  ☆163Updated 10 months ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆100Updated 2 months ago
• allthingsida / allthingsida
  Repository for the code snippets from the AllThingsIDA video channel
  ☆90Updated this week
• hugsy / recon_2024_windbg_workshop
  ☆71Updated 4 months ago
• ergrelet / themida-unmutate
  Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
  ☆226Updated 3 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆111Updated 2 months ago
• leandrofroes / gftrace
  A command line Windows API tracing tool for Golang binaries.
  ☆148Updated 11 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆62Updated 7 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆110Updated 4 months ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• nccgroup / ghostrings
  Ghidra scripts for recovering string definitions in Go binaries
  ☆103Updated last week
• OALabs / hashdb-ida
  HashDB API hash lookup plugin for IDA Pro
  ☆296Updated last month
• hasherezade / pe_unmapper
  Small tool to convert beteween the PE alignments (raw and virtual).
  ☆81Updated last year
• ucsb-seclab / popkorn-artifact
  ☆59Updated 2 years ago
• 0dayResearchLab / msFuzz
  Targeting Windows Kernel Driver Fuzzer
  ☆140Updated this week