Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja
☆11Jul 24, 2024Updated last year
Alternatives and similar repositories for BinaryNinja_shellcodehashes
Users that are interested in BinaryNinja_shellcodehashes are comparing it to the libraries listed below
Sorting:
- ☆16Sep 5, 2024Updated last year
- ☆18Feb 14, 2019Updated 7 years ago
- ☆17May 22, 2024Updated last year
- Go fastcall analysis for ida decompiler☆46Jun 25, 2025Updated 8 months ago
- IDA Pro plugin to aid with the analysis of native IIS modules☆21Aug 1, 2024Updated last year
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆16Sep 4, 2020Updated 5 years ago
- A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP☆37Jul 27, 2021Updated 4 years ago
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Aug 11, 2023Updated 2 years ago
- Mythic C2 wrapper for NimSyscallPacker☆25Mar 12, 2025Updated last year
- A VSCode plugin to assist with BOF development.☆37Aug 14, 2024Updated last year
- ☆39Feb 26, 2025Updated last year
- Async rust support for the reverse-engineered Crowdstrike Falcon protocol between the Sensor and cloud services☆17Mar 10, 2023Updated 3 years ago
- BOF/COFF obj file to PIC(shellcode). by golang☆39Sep 28, 2022Updated 3 years ago
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆165Aug 23, 2024Updated last year
- Steal users password with a fake sudo function.☆43Feb 29, 2024Updated 2 years ago
- Python 3 library to build YARA rules.☆13Oct 24, 2021Updated 4 years ago
- simple type recognition in decompiled executables☆119Jul 4, 2024Updated last year
- Threat Mitigation Strategies☆28Feb 18, 2026Updated last month
- Source files for my posts☆17Jun 20, 2023Updated 2 years ago
- Fixes and patches☆20Dec 3, 2020Updated 5 years ago
- ☆15Mar 21, 2025Updated 11 months ago
- BINARLY Research Tools and PoCs☆40Sep 27, 2024Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆28Feb 15, 2022Updated 4 years ago
- Forked and updated with some additional features over the original☆17Mar 30, 2021Updated 4 years ago
- Lightweight, secure and login like console display manager for X☆16Nov 1, 2021Updated 4 years ago
- Fetch PDB symbols directly from Microsoft's symbol servers☆48Oct 22, 2025Updated 4 months ago
- A spiritual .NET equivalent to the Gargoyle memory scanning evasion technique☆52Dec 6, 2018Updated 7 years ago
- ☆22Jan 15, 2025Updated last year
- Inlay hints for hex-rays☆82Jan 17, 2026Updated 2 months ago
- Process Hollowing in Rust with Process Executable Relocation Support for both 32 and 64 bit architecture environments.☆22Jan 6, 2025Updated last year
- BypassCredGuard CS BOF☆51Jan 23, 2025Updated last year
- A few STUXNET samples and live traffic captures from July 2010 while many stuxnet implants were still operational.☆29Sep 17, 2024Updated last year
- Here is a collage of reverse engineering topics that I find interesting☆16Dec 10, 2017Updated 8 years ago
- Full Antivirus Evasion for Mimikatz☆14Mar 10, 2017Updated 9 years ago
- ☆54Mar 26, 2025Updated 11 months ago
- Golang bindings for macOS / OS X libproc☆15Jan 20, 2018Updated 8 years ago
- Walks the Process' VAD list to grab the PTE's corresponding to a usermode virtual address, all to get the physical address☆23Nov 22, 2021Updated 4 years ago
- Executes shellcode from a remote server and aims to evade in-memory scanners☆32Nov 17, 2019Updated 6 years ago
- Bundles all the protocols that are using COMMS library from comms_champion project into a single project☆10Feb 14, 2018Updated 8 years ago