albertzsigovits / flare-on-challengesLinks
Write-ups for FireEye's FLARE-On challenges
☆25Updated 5 years ago
Alternatives and similar repositories for flare-on-challenges
Users that are interested in flare-on-challenges are comparing it to the libraries listed below
Sorting:
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- ☆71Updated last year
- Writeups for CTF challenges☆31Updated last year
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- Simple project using syscalls (via Syswhispers2) to execute MessageBox shellcode.☆75Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- TrashDBG the world's worse debugger☆23Updated 3 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- MalUnpack companion driver☆98Updated 11 months ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).☆88Updated 3 years ago
- Windows API Hashes used in the malwares☆41Updated 9 years ago
- Ebfuscator: Abusing system errors for binary obfuscation☆52Updated 5 years ago
- An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples☆70Updated 3 years ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆54Updated 2 years ago
- Parse .NET executable files.☆75Updated 2 weeks ago
- ☆161Updated 3 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- ☆31Updated 3 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆108Updated 4 years ago
- ☆28Updated 5 years ago
- ☆110Updated 4 years ago
- A small utility to deal with malware embedded hashes.☆51Updated last year
- C# implementation to produce ROR-13 numeric hash for given function API name☆32Updated 6 years ago
- Flare-On solutions☆36Updated 5 years ago
- ☆19Updated last month