Rurik / PE_Carver
Carves EXEs from given data files, using intelligent carving based upon PE headers
☆36Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for PE_Carver
- Useful scripts, rules etc. for use with YARA☆27Updated 3 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆35Updated 8 years ago
- Volatility Plugins☆21Updated 9 years ago
- ☆16Updated 9 years ago
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- A tool to generate yara signatures from function blocks☆19Updated 9 years ago
- Carve Windows Prefetch files from arbitrary binary data☆14Updated 7 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- Command-line Interface for Binar.ly☆37Updated 7 years ago
- a collection of public yara rules☆26Updated 5 years ago
- Various scrips☆12Updated 2 years ago
- Volatility Plugin to scan for shimmed processes in Windows☆10Updated 9 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 4 years ago
- RegRipper wrapper for simplified bulk parsing or registry hives☆9Updated 6 years ago
- Automated memory forensics analysis☆32Updated 5 years ago
- ☆19Updated 6 years ago
- Automation for VirusTotal☆31Updated 8 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago
- A Volatility plugin for finding sqlite database rows☆22Updated 5 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- onigiri - remote malware triage script☆24Updated 9 years ago
- Why hunt when you can seine?☆21Updated 9 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- Test suite for bypassing Malware sandboxes.☆38Updated 10 years ago