alexander-hanel / ida_yara
A python script that can be used to scan data within in an IDB using Yara.
☆22Updated 6 years ago
Alternatives and similar repositories for ida_yara:
Users that are interested in ida_yara are comparing it to the libraries listed below
- Hansel - a simple but flexible search for IDA☆26Updated 5 years ago
- IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.☆18Updated 6 years ago
- Automated library compilation and PDB annotation with CMake and IDA Pro☆20Updated 6 years ago
- ida python scripts☆23Updated 6 years ago
- An IDA Pro script for creating a clearer idb for nymaim malware☆10Updated 6 years ago
- Flare-On solutions☆36Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆40Updated 5 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Updated 7 years ago
- ☆32Updated 8 months ago
- Analysis PE file or Shellcode☆49Updated 8 years ago
- IDAPython scripts☆15Updated 7 years ago
- My conference presentations and publications☆26Updated 3 years ago
- QEMU with rVMI extensions☆25Updated 7 years ago
- ☆22Updated 4 years ago
- Binary Ninja plugin that syncs WinDbg to Binary Ninja☆47Updated 6 years ago
- ☆36Updated 5 years ago
- Malware analyses and helpful scripts☆29Updated 2 years ago
- ☆28Updated 4 years ago
- x86 bootloader emulation with Miasm (case of NotPetya)☆41Updated 5 years ago
- Control Flow Guard Teleportation demo☆23Updated 5 years ago
- ☆23Updated 5 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆16Updated 8 years ago
- ☆51Updated 6 years ago
- Yet another rule generator for Yara☆28Updated 4 years ago
- ☆26Updated 10 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆31Updated 8 months ago
- ☆33Updated 9 years ago
- Public repository for HEVD exploits☆20Updated 6 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago