OALabs/BlobRunner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

OALabs/BlobRunner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OALabs/BlobRunner)

Close

OALabs / BlobRunnerView on GitHubMore

• External links
• Readme badge

Quickly debug shellcode extracted during malware analysis

☆626May 23, 2023Updated 2 years ago

Alternatives and similar repositories for BlobRunner

Users that are interested in BlobRunner are comparing it to the libraries listed below

• mandiant / speakeasy

  View on GitHub
  Windows kernel and user mode emulation.
  ☆1,860Updated this week
• hasherezade / tiny_tracer

  View on GitHub
  A Pin Tool for tracing API calls etc
  ☆1,620Feb 8, 2026Updated 3 weeks ago
• hasherezade / mal_unpack

  View on GitHub
  Dynamic unpacker based on PE-sieve
  ☆799Sep 13, 2025Updated 5 months ago
• hasherezade / pe-sieve

  View on GitHub
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,562Oct 31, 2025Updated 4 months ago
• hasherezade / pe_to_shellcode

  View on GitHub
  Converts PE into a shellcode
  ☆2,745Aug 30, 2025Updated 6 months ago
• ayoubfaouzi / al-khaser

  View on GitHub
  Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
  ☆6,861Feb 1, 2026Updated last month
• monoxgas / sRDI

  View on GitHub
  Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
  ☆2,503Nov 15, 2023Updated 2 years ago
• OALabs / findyara-ida

  View on GitHub
  IDA python plugin to scan binary with Yara rules
  ☆180Jan 30, 2024Updated 2 years ago
• hasherezade / ida_ifl

  View on GitHub
  IFL - Interactive Functions List (plugin for IDA Pro)
  ☆487Updated this week
• ethereal-vx / Antivirus-Artifacts

  View on GitHub
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆754Nov 16, 2021Updated 4 years ago
• adamkramer / jmp2it

  View on GitHub
  Transfer EIP control to shellcode during malware analysis investigation
  ☆77Oct 29, 2014Updated 11 years ago
• mrexodia / dumpulator

  View on GitHub
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆855Feb 2, 2024Updated 2 years ago
• mandiant / STrace

  View on GitHub
  A DTrace on Windows Reimplementation
  ☆372Feb 3, 2026Updated last month
• Sentinel-One / CobaltStrikeParser

  View on GitHub
  ☆1,131Dec 19, 2023Updated 2 years ago
• TheWover / donut

  View on GitHub
  Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…
  ☆4,470Jul 8, 2025Updated 7 months ago
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,897Feb 23, 2026Updated last week
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,313Oct 31, 2025Updated 4 months ago
• mandiant / flare-emu

  View on GitHub
  ☆928Aug 14, 2025Updated 6 months ago
• DissectMalware / XLMMacroDeobfuscator

  View on GitHub
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆585May 5, 2024Updated last year
• OALabs / hashdb-ida

  View on GitHub
  HashDB API hash lookup plugin for IDA Pro
  ☆350Oct 9, 2025Updated 4 months ago
• hacksysteam / HackSysExtremeVulnerableDriver

  View on GitHub
  HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
  ☆2,953Feb 24, 2025Updated last year
• c3rb3ru5d3d53c / binlex

  View on GitHub
  A Binary Genetic Traits Lexer Framework
  ☆523Updated this week
• JusticeRage / Manalyze

  View on GitHub
  A static analyzer for PE executables.
  ☆1,107Feb 24, 2026Updated last week
• stephenfewer / ReflectiveDLLInjection

  View on GitHub
  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loadi…
  ☆3,231Sep 3, 2022Updated 3 years ago
• SafeBreach-Labs / pinjectra

  View on GitHub
  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
  ☆824Mar 10, 2022Updated 3 years ago
• Mr-Un1k0d3r / EDRs

  View on GitHub
  ☆2,168Feb 21, 2023Updated 3 years ago
• jthuraisamy / SysWhispers

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,990Jan 1, 2023Updated 3 years ago
• felixweyne / imaginaryC2

  View on GitHub
  Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …
  ☆446Oct 26, 2022Updated 3 years ago
• jthuraisamy / SysWhispers2

  View on GitHub
  AV/EDR evasion via direct system calls.
  ☆1,793Sep 3, 2022Updated 3 years ago
• OALabs / hashdb

  View on GitHub
  Assortment of hashing algorithms used in malware
  ☆394Feb 8, 2026Updated 3 weeks ago
• d35ha / CallObfuscator

  View on GitHub
  Obfuscate specific windows apis with different apis
  ☆1,023Feb 21, 2021Updated 5 years ago
• SentineLabs / AlphaGolang

  View on GitHub
  IDApython Scripts for Analyzing Golang Binaries
  ☆665Aug 8, 2024Updated last year
• a1ext / labeless

  View on GitHub
  Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…
  ☆578Feb 23, 2026Updated last week
• mandiant / flare-ida

  View on GitHub
  IDA Pro utilities from FLARE team
  ☆2,435Oct 29, 2024Updated last year
• hugsy / defcon_27_windbg_workshop

  View on GitHub
  DEFCON 27 workshop - Modern Debugging with WinDbg Preview
  ☆744Nov 1, 2024Updated last year
• decalage2 / ViperMonkey

  View on GitHub
  A VBA parser and emulation engine to analyze malicious macros.
  ☆1,119Jul 10, 2024Updated last year
• secrary / makin

  View on GitHub
  makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
  ☆743Mar 17, 2019Updated 6 years ago
• JLospinoso / gargoyle

  View on GitHub
  A memory scanning evasion technique
  ☆899May 24, 2017Updated 8 years ago
• hasherezade / libpeconv

  View on GitHub
  A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl
  ☆1,331Oct 31, 2025Updated 4 months ago