NozomiNetworks / upx-recovery-toolView external linksLinks
☆116Dec 12, 2022Updated 3 years ago
Alternatives and similar repositories for upx-recovery-tool
Users that are interested in upx-recovery-tool are comparing it to the libraries listed below
Sorting:
- A utility to fix intentionally corrupted UPX packed files.☆93May 22, 2023Updated 2 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Feb 5, 2026Updated last week
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- Resources from Trend Micro Research teams☆26Nov 14, 2024Updated last year
- Qakbot Registry Key Configuration Decryptor☆14Dec 20, 2021Updated 4 years ago
- ☆13Dec 29, 2022Updated 3 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- Configuration Extractors for Malware☆124Apr 23, 2025Updated 9 months ago
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Jun 14, 2022Updated 3 years ago
- ☆35Jan 13, 2026Updated last month
- YARA Language Server☆75Feb 3, 2026Updated 2 weeks ago
- ☆27Jul 11, 2022Updated 3 years ago
- ☆33Feb 26, 2022Updated 3 years ago
- ☆552Dec 4, 2023Updated 2 years ago
- An automatic unpacker and logger for DotNet Framework targeting files☆266Aug 23, 2023Updated 2 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58May 24, 2021Updated 4 years ago
- Muteces (mutexes/mutants) used by various malware families☆23Nov 11, 2024Updated last year
- ☆63Mar 29, 2022Updated 3 years ago
- Windows.EDB Browser☆60Mar 6, 2023Updated 2 years ago
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated 2 weeks ago
- Generating YARA rules based on binary code☆220Oct 7, 2021Updated 4 years ago
- A C++ tool to unstrip Rust/Go binaries (ELF and PE)☆403Jan 25, 2025Updated last year
- Go Lang Portable Executable Parser☆39Mar 31, 2021Updated 4 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Jul 7, 2022Updated 3 years ago
- A collection of anti disassembly techniques☆20Jul 22, 2017Updated 8 years ago
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- Detecting Cobalt Strike Team Servers on targets through traffic telemetry.☆22Aug 13, 2024Updated last year
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 2 years ago
- Hiew External Module (HEM) to calculate CRC-32, MD5, SHA-1, and SHA-256 hashes of a given file/block☆44Dec 17, 2024Updated last year
- Research on obfuscated licensing APIs / CLIP service in the Windows kernel☆137Aug 23, 2022Updated 3 years ago
- Tools and PoCs for Windows syscall investigation.☆368Dec 2, 2025Updated 2 months ago
- IDApython Scripts for Analyzing Golang Binaries☆665Aug 8, 2024Updated last year
- A guide on how to write fast and memory friendly YARA rules☆164Feb 11, 2025Updated last year
- This is an IDA plugin to recover class information from C++ binary.☆19Aug 4, 2020Updated 5 years ago
- "Reversing WebAssembly Module 101" Workshop (NorthSec 2019, hack.lu 2019)☆22Oct 15, 2020Updated 5 years ago
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆29Apr 3, 2025Updated 10 months ago
- ☆45Dec 2, 2025Updated 2 months ago
- A DTrace on Windows Reimplementation☆369Feb 3, 2026Updated 2 weeks ago