ThreatLabz / toolsLinks
Tools developed by the Zscaler ThreatLabz Threat Intelligence team
☆83Updated last month
Alternatives and similar repositories for tools
Users that are interested in tools are comparing it to the libraries listed below
Sorting:
- ☆74Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆57Updated last month
- ☆28Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- Parse .NET executable files.☆77Updated last week
- Native Python3 bindings for @horsicq's Detect-It-Easy☆73Updated 3 months ago
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆105Updated 2 months ago
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆47Updated 8 months ago
- ☆22Updated last year
- ☆106Updated 2 years ago
- ☆25Updated 10 months ago
- General malware analysis stuff☆37Updated last year
- UnpacMe IDA Byte Search☆29Updated last year
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- MalUnpack companion driver☆98Updated last year
- ☆30Updated 9 months ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 3 years ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- ☆37Updated 5 months ago
- A utility to fix intentionally corrupted UPX packed files.☆90Updated 2 years ago
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆54Updated 8 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated 2 years ago
- IDA Pro plugin to aid with the analysis of native IIS modules☆19Updated last year
- ☆113Updated last month
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆118Updated last year
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated 2 years ago
- IDA Python scripts☆41Updated 4 months ago
- Malware dynamic instrumentation tool based on frida framework☆108Updated 5 years ago