SouhailHammou / IDARay-Plugin
IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.
☆18Updated 6 years ago
Alternatives and similar repositories for IDARay-Plugin:
Users that are interested in IDARay-Plugin are comparing it to the libraries listed below
- Hansel - a simple but flexible search for IDA☆26Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆40Updated 5 years ago
- ida python scripts☆23Updated 6 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆22Updated 6 years ago
- Automated library compilation and PDB annotation with CMake and IDA Pro☆20Updated 6 years ago
- Yet another rule generator for Yara☆28Updated 4 years ago
- ☆23Updated 5 years ago
- ☆33Updated 3 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 5 years ago
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated 9 months ago
- Utilities for working with vivisect☆25Updated 3 weeks ago
- libemu shim layer and win32 environment for Unicorn Engine☆71Updated 7 years ago
- ☆28Updated 4 years ago
- Malware analyses and helpful scripts☆29Updated 2 years ago
- IDAPython scripts☆15Updated 7 years ago
- Flare-On solutions☆36Updated 5 years ago
- ☆22Updated 4 years ago
- TA505 unpacker Python 2.7☆47Updated 4 years ago
- Analyses in IDA/Hex-Rays☆80Updated last year
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 5 years ago
- ☆51Updated 6 years ago
- ☆69Updated last year
- ☆32Updated 9 months ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆16Updated 8 years ago
- ☆26Updated 10 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆30Updated 7 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- IDA script for vmprotect Windows Api address decoder☆51Updated 3 years ago