SentineLabs / MemloaderLinks
Memory Loader Open Source Project by Sentinel-Labs.
☆24Updated 4 years ago
Alternatives and similar repositories for Memloader
Users that are interested in Memloader are comparing it to the libraries listed below
Sorting:
- ☆28Updated 5 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆60Updated 9 months ago
- UnpacMe IDA Byte Search☆28Updated last year
- ☆31Updated 3 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated 11 months ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- IDAPython scripts☆15Updated 7 years ago
- ☆22Updated 4 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆20Updated 2 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆32Updated 6 years ago
- Yet another rule generator for Yara☆29Updated 4 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Analyses in IDA/Hex-Rays☆83Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.☆18Updated 6 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- ☆71Updated last year
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆34Updated 3 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆16Updated 3 years ago
- ☆25Updated 3 years ago
- IDA plugin for quickly copying disassembly as encoded hex bytes☆62Updated 3 years ago
- Simple windows API logger☆104Updated 5 years ago
- A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)☆11Updated last year
- An Integrity-Check Monitoring Pintool☆57Updated 4 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year