airbus-cert/yara-ttd

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/airbus-cert/yara-ttd)

airbus-cert / yara-ttd

Use YARA rules on Time Travel Debugging traces

☆96

Alternatives and similar repositories for yara-ttd

Users that are interested in yara-ttd are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

airbus-seclab / nbutools
View on GitHub
Tools for offensive security of NetBackup infrastructures
☆44Jun 6, 2023Updated 2 years ago
airbus-cert / ttd2mdmp
View on GitHub
Extract data of TTD trace file to a minidump
☆30Jul 31, 2023Updated 2 years ago
airbus-cert / minusone
View on GitHub
Powershell/Javascript deobfuscator based on tree-sitter
☆93Mar 23, 2026Updated last week
sleepy762 / rwprocmem
View on GitHub
A program to read and modify the memory of other processes.
☆20May 19, 2023Updated 2 years ago
airbus-cert / vbSparkle
View on GitHub
VBScript & VBA source-to-source deobfuscator with partial-evaluation
☆80Aug 7, 2024Updated last year
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
google / vxsig
View on GitHub
Automatically generate AV byte signatures from sets of similar binaries.
☆287Dec 10, 2024Updated last year
g4l4drim / ChromeDump
View on GitHub
☆55Oct 12, 2024Updated last year
caoweiquan322 / NotEnough
View on GitHub
This tool calculates tricky canonical huffman histogram for CVE-2023-4863.
☆26Dec 20, 2023Updated 2 years ago
commial / ttd-bindings
View on GitHub
Bindings for Microsoft WinDBG TTD
☆235Aug 5, 2023Updated 2 years ago
mel2oo / Driver-for-windows
View on GitHub
☆17Jun 30, 2020Updated 5 years ago
ExaTrack / Kdrill
View on GitHub
Python tool to check rootkits in Windows kernel
☆207Aug 20, 2025Updated 7 months ago
ANSSI-FR / sftp2misp
View on GitHub
Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
☆15May 12, 2023Updated 2 years ago
thalium / vminer
View on GitHub
☆90Feb 12, 2025Updated last year
airbus-cert / ttddbg
View on GitHub
Time Travel Debugging IDA plugin
☆596Jun 27, 2024Updated last year
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
kernullist / krn_pcre
View on GitHub
Windows Kernel Mode PCRE
☆10Feb 4, 2015Updated 11 years ago
tathanhdinh / keystone-rs
View on GitHub
Rust binding for Keystone assembler framework
☆11Dec 9, 2018Updated 7 years ago
mattnotmitt / libyara-wasm
View on GitHub
PoC compilation of libyara into WASM, for potential future CyberChef integration
☆14Sep 18, 2022Updated 3 years ago
xqrzd / HazardShield
View on GitHub
☆21Oct 4, 2015Updated 10 years ago
VirusTotal / vt-ida-plugin
View on GitHub
Official VirusTotal plugin for IDA Pro
☆181Feb 4, 2026Updated last month
fengjixuchui / CodaPinTracer
View on GitHub
Lightweight WINAPI tracing with Pin
☆27Aug 22, 2019Updated 6 years ago
huoji120 / safe_duck
View on GitHub
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
☆23Dec 2, 2023Updated 2 years ago
yjugl / mitimon
View on GitHub
Monitor ETW events for Windows process mitigation policies, with stack traces
☆31Oct 7, 2022Updated 3 years ago
100DaysofYARA / 2023
View on GitHub
Rules Shared by the Community from 100 Days of YARA 2023
☆78Apr 12, 2023Updated 2 years ago
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
huoji120 / Heuristic_antivirus_engine_by_huoji
View on GitHub
基于UC的启发式杀毒引擎[还没做完]
☆35Mar 28, 2021Updated 5 years ago
huoji120 / cpu_duck
View on GitHub
关于intel和amd指令行为不一样这件事
☆62Apr 15, 2022Updated 3 years ago
100DaysofYARA / 2022
View on GitHub
☆23Dec 15, 2022Updated 3 years ago
0xDivyanshu-new / CVE-2023-29360
View on GitHub
POC for CVE-2023-29360
☆12Aug 31, 2024Updated last year
albertzsigovits / writeups
View on GitHub
Reviews and tests of security products
☆17Dec 28, 2024Updated last year
airbus-seclab / AFLplusplus-blogpost
View on GitHub
Blogpost about optimizing binary-only fuzzing with AFL++
☆71Oct 7, 2023Updated 2 years ago
airbus-cert / dirtypipe-ebpf_detection
View on GitHub
An eBPF detection program for CVE-2022-0847
☆29Jul 5, 2022Updated 3 years ago
chnzzh / batch-ida
View on GitHub
A python library for generate ida pro files (*.idb/*.i64) in batch mode & compare executable files use bindiff in batch mode.
☆32Jul 9, 2025Updated 8 months ago
KasperskyLab / Apihashes
View on GitHub
IDA Pro plugin for recognizing known hashes of API function names
☆83May 12, 2022Updated 3 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
airbus-cert / cacdec
View on GitHub
The hidden mstsc recorder player
☆27Mar 9, 2020Updated 6 years ago
TKCERT / winnti-suricata-lua
View on GitHub
Suricata rules to detect Winnti communication
☆16Mar 5, 2018Updated 8 years ago
nccgroup / mimikatz-detector-busylight
View on GitHub
USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
☆21Sep 6, 2022Updated 3 years ago
aaronkaplan / openai-cti-summarizer
View on GitHub
Summarize CTI reports with OpenAI
☆18Mar 23, 2026Updated last week
0vercl0k / udmp-parser-rs
View on GitHub
A Rust crate for parsing Windows user minidumps.
☆41May 1, 2024Updated last year
forensicxlab / VISION-ProcMon
View on GitHub
A ProcessMonitor visualization application written in rust.
☆184Aug 6, 2023Updated 2 years ago
P-i-N / sbp
View on GitHub
Structured Bindings Pack - serialize C++ structs into MessagePack binary form
☆21Nov 4, 2020Updated 5 years ago