Identifies metadata of .NET binary files.
☆21Apr 3, 2024Updated last year
Alternatives and similar repositories for DotNet-MetaData
Users that are interested in DotNet-MetaData are comparing it to the libraries listed below
Sorting:
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆24Aug 21, 2023Updated 2 years ago
- Repository that contains a set of purposefully erroneous Yara rules.☆61Jul 23, 2025Updated 7 months ago
- ☆35Dec 6, 2023Updated 2 years ago
- Example of an ELF parser to learn about the ELF format☆11Oct 6, 2024Updated last year
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆21Mar 22, 2024Updated last year
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆18Jun 29, 2024Updated last year
- Quick ESXi Log Parser☆30Oct 20, 2025Updated 5 months ago
- function identification signatures☆12Apr 26, 2021Updated 4 years ago
- Modular malware analysis artifact collection and correlation framework☆54Apr 23, 2024Updated last year
- The future home for a library able to parse in memory lot of complex structures from common shared libs and syscalls☆15Apr 4, 2023Updated 2 years ago
- Compiled executables of common crypto and encoding algorithms☆16Oct 3, 2023Updated 2 years ago
- Indicators of compromise☆17Jan 29, 2026Updated last month
- Ghosting-AMSI☆18Apr 30, 2025Updated 10 months ago
- Sliver agents for Mythic☆48Nov 18, 2024Updated last year
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- YARA Language Server☆74Feb 3, 2026Updated last month
- ☆22Dec 22, 2020Updated 5 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Feb 23, 2017Updated 9 years ago
- Set of plugins and library for dynamic pdb generation and synchronisation☆39May 3, 2024Updated last year
- Hex-Rays CLI (HCLI)☆62Mar 10, 2026Updated last week
- ☆25Jan 8, 2024Updated 2 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Feb 19, 2023Updated 3 years ago
- ☆84May 19, 2024Updated last year
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.☆17May 19, 2024Updated last year
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆24May 29, 2023Updated 2 years ago
- A wrapper library for the set of ptrace-related system calls in Linux☆13May 20, 2014Updated 11 years ago
- Identifies LOLDrivers that are not blocked by the active HVCI policy — ideal for BYOVD scenarios.☆79Jul 25, 2025Updated 7 months ago
- ☆64Mar 29, 2022Updated 3 years ago
- Proof of concept agentic solver for nfuncs from DEF CON Quals 2025☆23Apr 18, 2025Updated 11 months ago
- Extract GUIDs from .NET assemblies☆21Jun 15, 2016Updated 9 years ago
- ☆38Apr 1, 2024Updated last year
- A Windows kernel driver viewer and manager built in Rust — real-time enumeration, signature verification, SCM operations, and multi-for…☆105Updated this week
- All challenges I created for CTF☆12Jun 7, 2021Updated 4 years ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- Deobfuscator for remove proxy calls methods☆27Jan 30, 2023Updated 3 years ago
- A tool that adds reproducible UUIDs to YARA rules☆13Apr 24, 2024Updated last year
- OSTE WLA automate the process of analyzing web server logs with the Python Web Log Analyzer.☆44Jan 13, 2024Updated 2 years ago