SanseoLab / ejExtractor
Integrated tool for extracting scripts and binaries of AutoIt, AutoHotKey, InnoSetup, NSIS executables and Decoding powershell / jse / vbe scripts.
☆14Updated 6 years ago
Alternatives and similar repositories for ejExtractor:
Users that are interested in ejExtractor are comparing it to the libraries listed below
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆20Updated 5 years ago
- Extract the original ransomware binary from an NSIS installer☆15Updated 8 years ago
- ☆18Updated 11 years ago
- [F]aster [U]niversal [U]npacker☆46Updated 11 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- Dump Windows registry hives as text.☆16Updated 6 years ago
- This is a repository for the public blog with Labs indicators of compromise and code☆18Updated 5 years ago
- plugins for Exeinfo Pe☆20Updated last year
- Parse Microsoft shim databases☆30Updated 2 months ago
- A repository of example plugins for Relyze Desktop.☆34Updated 4 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆35Updated 7 years ago
- Ghidra plugin for https://analyze.intezer.com☆70Updated 2 years ago
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆54Updated 2 months ago
- Memory dump and Sample analysis tool☆12Updated 2 weeks ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Updated last year
- It's not just UsnJrnl (USN Journal Records/Change Journal Records) parser.☆23Updated 6 years ago
- MS Windows LNK file parser☆12Updated 8 years ago
- Convert Windows Netmon Monitor Mode Wireless Packet Captures to Libpcap Format☆15Updated 5 years ago
- Function ID for Malware Analysis☆11Updated 4 years ago
- ☆22Updated 4 years ago
- Various Topics☆15Updated 2 years ago
- A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…☆45Updated last year
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆46Updated 3 months ago
- ☆64Updated 3 weeks ago
- My collection of scripts for Ghidra (https://github.com/NationalSecurityAgency/ghidra)☆10Updated 4 years ago
- Help deobfuscate VBScript☆15Updated 2 years ago
- Import an x64dbg database into a Ghidra Project☆22Updated 5 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆64Updated 3 years ago
- Capture BAT is a behavioral analysis tool of applications for the Win32 operating system family.☆32Updated 11 years ago
- History and analysis of Windows desktop images☆17Updated 4 years ago