albertzsigovits / flare-on-challenges

Related projects: ⓘ

• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆22Updated last year
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆65Updated 2 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆117Updated 4 years ago
• shamrockhoax / mazedecoder
  ☆28Updated 4 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated last year
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆28Updated 10 months ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆24Updated 2 years ago
• OALabs / trashdbg
  TrashDBG the world's worse debugger
  ☆24Updated 2 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆77Updated 3 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆38Updated 4 years ago
• jackullrich / Windows-API-Fuzzer
  Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.
  ☆94Updated 4 years ago
• OALabs / UnpacMe-IDA-Byte-Search
  UnpacMe IDA Byte Search
  ☆25Updated 10 months ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆66Updated 9 months ago
• FULLSHADE / Kernel-exploits
  ☆123Updated this week
• ihack4falafel / ROR13HashGenerator
  C# implementation to produce ROR-13 numeric hash for given function API name
  ☆31Updated 5 years ago
• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆92Updated 3 months ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆82Updated 2 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 4 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆66Updated 11 months ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆50Updated 3 years ago
• h0mbre / Windows-Exploits
  ☆87Updated 3 years ago
• levanvn / APT32_Deobfuscate
  My scripts to deobfuscate APT32 malware
  ☆26Updated 2 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 4 years ago
• VoidSec / ioctlpus
  IOCTLpus can be used to make DeviceIoControl requests with arbitrary inputs (with functionality somewhat similar to Burp Repeater).
  ☆81Updated 2 years ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆48Updated 11 months ago
• BehroozAbbassi / DriverAnalyzer
  A static analysis tool that helps security researchers scan a list of Windows kernel drivers for common vulnerability patterns in drivers…
  ☆54Updated 2 years ago