angea / corkami

Related projects: ⓘ

• LordNoteworthy / binary-auditing-solutions
  Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.
  ☆74Updated 3 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆124Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• Fare9 / Windows-Internals
  My repository to upload drivers from different books and all the information related to windows internals.
  ☆153Updated 5 years ago
• yellowbyte / reverse-engineering-playground
  Scripts I made to aid me in everyday reversing or just for fun...
  ☆35Updated 5 years ago
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 2 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆41Updated 8 months ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆115Updated 5 years ago
• bootkitsbook / rootkits
  ☆104Updated 5 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 9 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆119Updated 4 years ago
• x64dbg / x64dbgbinja
  Official x64dbg plugin for Binary Ninja
  ☆69Updated this week
• yardenshafir / PoolViewer
  An application to view and filter pool allocations from a dmp file on Windows 10 RS5+.
  ☆121Updated last year
• danielplohmann / idascope
  An IDA Pro extension for easier (malware) reverse engineering
  ☆109Updated 2 years ago
• Sentinel-One / SKREAM
  SentinelOne's KeRnel Exploits Advanced Mitigations
  ☆50Updated 5 years ago
• alexander-hanel / unicorn-engine-notes
  Notes on using the Python bindings for the Unicorn Engine
  ☆66Updated 4 years ago
• jthuraisamy / ioctlpus
  ☆107Updated 4 years ago
• 0vercl0k / sic
  Enumerate user mode shared memory mappings on Windows.
  ☆112Updated 3 years ago
• ohjeongwook / ShellCodeEmulator
  Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment
  ☆117Updated 4 years ago
• 86hh / POC-viruses
  POC viruses I have created to demo some ideas
  ☆58Updated 4 years ago
• bootkitsbook / bootkits
  ☆60Updated 5 years ago
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆120Updated 2 years ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆72Updated 3 years ago
• RolfRolles / IDBs
  Analyses in IDA/Hex-Rays
  ☆78Updated last year
• SouhailHammou / Drivers
  Windows Drivers
  ☆95Updated 5 years ago
• baderj / practical-reverse-engineering
  my results for the exercises in the book "Practical Reverse Engineering" by Bruce Dang et al.
  ☆107Updated 10 years ago
• HexHive / malWASH
  ☆112Updated 8 years ago
• RolfRolles / FinSpyVM
  Static unpacker for FinSpy VM
  ☆97Updated 3 years ago
• AllsafeCyberSecurity / py-findcrypt-ghidra
  FindCrypt for Ghidra written in Python
  ☆25Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year