airbus-cert/yara-ttd

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/airbus-cert/yara-ttd)

airbus-cert / yara-ttd

Use YARA rules on Time Travel Debugging traces

☆97

Alternatives and similar repositories for yara-ttd

Users that are interested in yara-ttd are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

airbus-seclab / nbutools
View on GitHub
Tools for offensive security of NetBackup infrastructures
☆44Jun 6, 2023Updated 2 years ago
airbus-cert / ttd2mdmp
View on GitHub
Extract data of TTD trace file to a minidump
☆30Jul 31, 2023Updated 2 years ago
airbus-cert / minusone
View on GitHub
Powershell/Javascript deobfuscator based on tree-sitter
☆93Updated this week
sleepy762 / rwprocmem
View on GitHub
A program to read and modify the memory of other processes.
☆20May 19, 2023Updated 2 years ago
airbus-cert / vbSparkle
View on GitHub
VBScript & VBA source-to-source deobfuscator with partial-evaluation
☆80Aug 7, 2024Updated last year
Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
google / vxsig
View on GitHub
Automatically generate AV byte signatures from sets of similar binaries.
☆286Dec 10, 2024Updated last year
g4l4drim / ChromeDump
View on GitHub
☆55Oct 12, 2024Updated last year
caoweiquan322 / NotEnough
View on GitHub
This tool calculates tricky canonical huffman histogram for CVE-2023-4863.
☆26Dec 20, 2023Updated 2 years ago
commial / ttd-bindings
View on GitHub
Bindings for Microsoft WinDBG TTD
☆239Aug 5, 2023Updated 2 years ago
mel2oo / Driver-for-windows
View on GitHub
☆17Jun 30, 2020Updated 5 years ago
ExaTrack / Kdrill
View on GitHub
Python tool to check rootkits in Windows kernel
☆210Aug 20, 2025Updated 7 months ago
ANSSI-FR / sftp2misp
View on GitHub
Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
☆15May 12, 2023Updated 2 years ago
thalium / vminer
View on GitHub
☆89Feb 12, 2025Updated last year
airbus-cert / ttddbg
View on GitHub
Time Travel Debugging IDA plugin
☆595Jun 27, 2024Updated last year
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
kernullist / krn_pcre
View on GitHub
Windows Kernel Mode PCRE
☆10Feb 4, 2015Updated 11 years ago
mattnotmitt / libyara-wasm
View on GitHub
PoC compilation of libyara into WASM, for potential future CyberChef integration
☆14Sep 18, 2022Updated 3 years ago
VirusTotal / vt-ida-plugin
View on GitHub
Official VirusTotal plugin for IDA Pro
☆181Feb 4, 2026Updated 2 months ago
xqrzd / HazardShield
View on GitHub
☆21Oct 4, 2015Updated 10 years ago
fengjixuchui / CodaPinTracer
View on GitHub
Lightweight WINAPI tracing with Pin
☆27Aug 22, 2019Updated 6 years ago
huoji120 / safe_duck
View on GitHub
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
☆23Dec 2, 2023Updated 2 years ago
yjugl / mitimon
View on GitHub
Monitor ETW events for Windows process mitigation policies, with stack traces
☆31Oct 7, 2022Updated 3 years ago
100DaysofYARA / 2023
View on GitHub
Rules Shared by the Community from 100 Days of YARA 2023
☆78Apr 12, 2023Updated 3 years ago
huoji120 / Heuristic_antivirus_engine_by_huoji
View on GitHub
基于UC的启发式杀毒引擎[还没做完]
☆35Mar 28, 2021Updated 5 years ago
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
airbus-cert / CVE-2024-4040
View on GitHub
Scanner for CVE-2024-4040
☆51May 17, 2024Updated last year
huoji120 / cpu_duck
View on GitHub
关于intel和amd指令行为不一样这件事
☆62Apr 15, 2022Updated 4 years ago
100DaysofYARA / 2022
View on GitHub
☆23Dec 15, 2022Updated 3 years ago
0xDivyanshu-new / CVE-2023-29360
View on GitHub
POC for CVE-2023-29360
☆12Aug 31, 2024Updated last year
albertzsigovits / writeups
View on GitHub
Reviews and tests of security products
☆17Dec 28, 2024Updated last year
airbus-seclab / AFLplusplus-blogpost
View on GitHub
Blogpost about optimizing binary-only fuzzing with AFL++
☆70Oct 7, 2023Updated 2 years ago
chnzzh / batch-ida
View on GitHub
A python library for generate ida pro files (*.idb/*.i64) in batch mode & compare executable files use bindiff in batch mode.
☆32Jul 9, 2025Updated 9 months ago
KasperskyLab / Apihashes
View on GitHub
IDA Pro plugin for recognizing known hashes of API function names
☆83May 12, 2022Updated 3 years ago
airbus-cert / cacdec
View on GitHub
The hidden mstsc recorder player
☆27Mar 9, 2020Updated 6 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
TKCERT / winnti-suricata-lua
View on GitHub
Suricata rules to detect Winnti communication
☆16Mar 5, 2018Updated 8 years ago
nccgroup / mimikatz-detector-busylight
View on GitHub
USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
☆21Sep 6, 2022Updated 3 years ago
aaronkaplan / openai-cti-summarizer
View on GitHub
Summarize CTI reports with OpenAI
☆18Updated this week
0vercl0k / udmp-parser-rs
View on GitHub
A Rust crate for parsing Windows user minidumps.
☆40May 1, 2024Updated last year
forensicxlab / VISION-ProcMon
View on GitHub
A ProcessMonitor visualization application written in rust.
☆184Aug 6, 2023Updated 2 years ago
P-i-N / sbp
View on GitHub
Structured Bindings Pack - serialize C++ structs into MessagePack binary form
☆21Nov 4, 2020Updated 5 years ago
0vercl0k / kdmp-parser
View on GitHub
A Windows kernel dump C++ parser library with Python 3 bindings.
☆214Oct 5, 2025Updated 6 months ago