airbus-cert/yara-ttd

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/airbus-cert/yara-ttd)

airbus-cert / yara-ttd

Use YARA rules on Time Travel Debugging traces

☆97

Alternatives and similar repositories for yara-ttd

Users that are interested in yara-ttd are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

airbus-seclab / nbutools
View on GitHub
Tools for offensive security of NetBackup infrastructures
☆44Jun 6, 2023Updated 2 years ago
airbus-cert / ttd2mdmp
View on GitHub
Extract data of TTD trace file to a minidump
☆31Jul 31, 2023Updated 2 years ago
airbus-cert / minusone
View on GitHub
Powershell/Javascript deobfuscator based on tree-sitter
☆97Apr 29, 2026Updated last week
sleepy762 / rwprocmem
View on GitHub
A program to read and modify the memory of other processes.
☆20May 19, 2023Updated 2 years ago
airbus-cert / vbSparkle
View on GitHub
VBScript & VBA source-to-source deobfuscator with partial-evaluation
☆80Aug 7, 2024Updated last year
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
google / vxsig
View on GitHub
Automatically generate AV byte signatures from sets of similar binaries.
☆287Updated this week
g4l4drim / ChromeDump
View on GitHub
☆60Oct 12, 2024Updated last year
caoweiquan322 / NotEnough
View on GitHub
This tool calculates tricky canonical huffman histogram for CVE-2023-4863.
☆26Dec 20, 2023Updated 2 years ago
commial / ttd-bindings
View on GitHub
Bindings for Microsoft WinDBG TTD
☆241Aug 5, 2023Updated 2 years ago
mel2oo / Driver-for-windows
View on GitHub
☆17Jun 30, 2020Updated 5 years ago
ExaTrack / Kdrill
View on GitHub
Python tool to check rootkits in Windows kernel
☆210Aug 20, 2025Updated 8 months ago
ANSSI-FR / sftp2misp
View on GitHub
Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
☆15May 12, 2023Updated 2 years ago
thalium / vminer
View on GitHub
☆89Feb 12, 2025Updated last year
airbus-cert / ttddbg
View on GitHub
Time Travel Debugging IDA plugin
☆595Jun 27, 2024Updated last year
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
kernullist / krn_pcre
View on GitHub
Windows Kernel Mode PCRE
☆10Feb 4, 2015Updated 11 years ago
tathanhdinh / keystone-rs
View on GitHub
Rust binding for Keystone assembler framework
☆11Dec 9, 2018Updated 7 years ago
mattnotmitt / libyara-wasm
View on GitHub
PoC compilation of libyara into WASM, for potential future CyberChef integration
☆14Sep 18, 2022Updated 3 years ago
VirusTotal / vt-ida-plugin
View on GitHub
Official VirusTotal plugin for IDA Pro
☆181Feb 4, 2026Updated 3 months ago
xqrzd / HazardShield
View on GitHub
☆21Oct 4, 2015Updated 10 years ago
fengjixuchui / CodaPinTracer
View on GitHub
Lightweight WINAPI tracing with Pin
☆27Aug 22, 2019Updated 6 years ago
huoji120 / safe_duck
View on GitHub
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
☆23Dec 2, 2023Updated 2 years ago
yjugl / mitimon
View on GitHub
Monitor ETW events for Windows process mitigation policies, with stack traces
☆31Oct 7, 2022Updated 3 years ago
100DaysofYARA / 2023
View on GitHub
Rules Shared by the Community from 100 Days of YARA 2023
☆78Apr 12, 2023Updated 3 years ago
Open source password manager - Proton Pass • Ad
Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
huoji120 / Heuristic_antivirus_engine_by_huoji
View on GitHub
基于UC的启发式杀毒引擎[还没做完]
☆35Mar 28, 2021Updated 5 years ago
airbus-cert / CVE-2024-4040
View on GitHub
Scanner for CVE-2024-4040
☆52May 17, 2024Updated last year
huoji120 / cpu_duck
View on GitHub
关于intel和amd指令行为不一样这件事
☆61Apr 15, 2022Updated 4 years ago
100DaysofYARA / 2022
View on GitHub
☆23Dec 15, 2022Updated 3 years ago
0xDivyanshu-new / CVE-2023-29360
View on GitHub
POC for CVE-2023-29360
☆12Aug 31, 2024Updated last year
albertzsigovits / writeups
View on GitHub
Reviews and tests of security products
☆17Dec 28, 2024Updated last year
airbus-seclab / AFLplusplus-blogpost
View on GitHub
Blogpost about optimizing binary-only fuzzing with AFL++
☆70Oct 7, 2023Updated 2 years ago
airbus-cert / dirtypipe-ebpf_detection
View on GitHub
An eBPF detection program for CVE-2022-0847
☆29Jul 5, 2022Updated 3 years ago
chnzzh / batch-ida
View on GitHub
A python library for generate ida pro files (*.idb/*.i64) in batch mode & compare executable files use bindiff in batch mode.
☆32Jul 9, 2025Updated 10 months ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
KasperskyLab / Apihashes
View on GitHub
IDA Pro plugin for recognizing known hashes of API function names
☆83May 12, 2022Updated 3 years ago
airbus-cert / cacdec
View on GitHub
The hidden mstsc recorder player
☆27Mar 9, 2020Updated 6 years ago
TKCERT / winnti-suricata-lua
View on GitHub
Suricata rules to detect Winnti communication
☆16Mar 5, 2018Updated 8 years ago
nccgroup / mimikatz-detector-busylight
View on GitHub
USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
☆21Sep 6, 2022Updated 3 years ago
aaronkaplan / openai-cti-summarizer
View on GitHub
Summarize CTI reports with OpenAI
☆18Updated this week
0vercl0k / udmp-parser-rs
View on GitHub
A Rust crate for parsing Windows user minidumps.
☆41May 1, 2024Updated 2 years ago
forensicxlab / VISION-ProcMon
View on GitHub
A ProcessMonitor visualization application written in rust.
☆185Aug 6, 2023Updated 2 years ago