PhrozenIO / DLest
Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.
☆214Updated 9 months ago
Alternatives and similar repositories for DLest:
Users that are interested in DLest are comparing it to the libraries listed below
- User-friendly Microsoft Windows Debugger for Malware Analysts.☆195Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆177Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆158Updated last month
- Advanced static analysis tool☆88Updated last month
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆341Updated 2 months ago
- Patching "signtool.exe" to accept expired certificates for code-signing.☆276Updated 8 months ago
- Python tool to check rootkits in Windows kernel☆195Updated 3 weeks ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated last year
- A list of useful tools for Malware Analysis (will be updated regularly)☆140Updated 6 months ago
- Signtool for expired certificates☆473Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆141Updated 8 months ago
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆287Updated last year
- A dynamic unpacking tool☆133Updated last year
- Important notes and topics on my journey towards mastering Windows Internals☆368Updated 10 months ago
- ☆216Updated last month
- A POC to disable TamperProtection and other Defender / MDE components☆201Updated 9 months ago
- ☆112Updated last month
- Cybersecurity research results. Simple C/C++ and Python implementations☆212Updated last week
- A C# based tool for analysing malicious OneNote documents☆111Updated last year
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆299Updated last year
- ☆155Updated 10 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆252Updated last year
- ☆64Updated last month
- Configuration Extractors for Malware☆93Updated last month
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆170Updated last week
- Repository of Yara Rules☆103Updated last month
- Collect Windows telemetry for Maldev☆318Updated last month
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆387Updated last week
- Analyse your malware to surgically obfuscate it☆456Updated last month
- A small x64 library to load dll's into memory.☆435Updated last year