alexander-hanel / gopep

Related projects: ⓘ

• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆22Updated last year
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• malware-kitten / shellcode_hashes
  A collection of shellcode hashes
  ☆17Updated 6 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆15Updated 4 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆24Updated 2 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 4 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆45Updated 4 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆38Updated 4 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 4 years ago
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆24Updated 4 years ago
• OALabs / trashdbg
  TrashDBG the world's worse debugger
  ☆24Updated 2 years ago
• perturbed-platypus / LinooxMalware
  ☆26Updated 5 years ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆25Updated 5 years ago
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆21Updated 3 months ago
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆32Updated 5 years ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆21Updated 2 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 9 years ago
• intezer / analyze-scripts
  ☆25Updated last year
• mauronz / binja-emotet
  ☆18Updated 3 years ago
• djhohnstein / ProcessReimaging
  Process reimaging proof of concept code
  ☆95Updated 5 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆35Updated 4 years ago
• snemes / malware-analysis
  ☆23Updated 4 years ago
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 3 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆41Updated 8 months ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆88Updated 5 years ago
• nao-sec / rr_decoder
  Decode Royal Road RTF Weaponizer 8.t object
  ☆22Updated 2 months ago
• DanusMinimus / Injections
  A repository where I share my injection implemintations
  ☆28Updated 4 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆58Updated 4 years ago