aN0mad / analysisToolsLinks
Malware analysis tools used alongside "Practical Malware Analysis: The Hands-on Guide to Dissecting Malicious Software" Book by Andrew Honig and Michael Sikorski
☆57Updated 7 years ago
Alternatives and similar repositories for analysisTools
Users that are interested in analysisTools are comparing it to the libraries listed below
Sorting:
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆226Updated 2 years ago
- Exercise writeups from the book Practical Malware Analysis.☆244Updated 2 years ago
- Malware Samples that could be used for teaching students about malware analysis.☆63Updated last year
- Setup scripts for my Malware Analysis VMs☆261Updated 3 years ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆203Updated 4 months ago
- Source code of exploiting windows API for red teaming series☆150Updated 3 years ago
- ☆79Updated 8 years ago
- Just another collection of links, tools, reports and other stuff☆24Updated 4 years ago
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆106Updated 7 months ago
- Graphical interface for PortEx, a Portable Executable and Malware Analysis Library☆143Updated 7 months ago
- The source code files that accompany the short book "Building C2 Implants in C++: A Primer" by Steven Patterson (@shogun_lab).☆235Updated last year
- Batch script to compile a binary shellcode blob into an exe file☆89Updated 6 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆185Updated 7 months ago
- shared samples from #dailyphish and/or #apt tweets☆41Updated 5 months ago
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆229Updated last year
- My Malware Analysis Reports☆25Updated 3 years ago
- Embed an executable as a PE resource, drops and launches it in runtime.☆64Updated 4 years ago
- An Xdbg Plugin of the ERC Library.☆187Updated 9 months ago
- A basic c2 / agent.☆118Updated 5 years ago
- Conti Locker source code☆198Updated 3 years ago
- Windows APT Warfare, published by Packt☆75Updated 2 years ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆184Updated 4 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆168Updated last year
- A collection of tools and detections for the Sliver C2 Frameworj☆133Updated 2 years ago
- A curated list of awesome Windows Exploitation resources, and shiny things.☆85Updated 8 years ago
- Compile shellcode into an exe file from Windows or Linux.☆72Updated 8 months ago
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆38Updated 3 years ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆215Updated this week
- Resources for learning malware analysis and reverse engineering☆144Updated 2 years ago
- Extract C2 Traffic☆252Updated last year