High Octane Triage Analysis
☆838Apr 2, 2026Updated last week
Alternatives and similar repositories for refinery
Users that are interested in refinery are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Binary Genetic Traits Lexer Framework☆525Mar 30, 2026Updated last week
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆858Feb 2, 2024Updated 2 years ago
- Windows kernel and user mode emulation.☆1,933Updated this week
- Malduck is your ducky companion in malware analysis journeys☆350Jun 22, 2025Updated 9 months ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,940Updated this week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Dynamic unpacker based on PE-sieve☆803Apr 1, 2026Updated last week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆703Apr 1, 2026Updated last week
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated 2 months ago
- Quickly debug shellcode extracted during malware analysis☆631May 23, 2023Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Mar 23, 2026Updated 2 weeks ago
- Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…☆3,722Mar 21, 2026Updated 2 weeks ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,959Apr 2, 2026Updated last week
- a PE Loader and Windows API tracer. Useful in malware analysis.☆142Sep 19, 2022Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,606Updated this week
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆263Mar 27, 2023Updated 3 years ago
- A Pin Tool for tracing API calls etc☆1,641Feb 8, 2026Updated 2 months ago
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 9 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,118Jul 10, 2024Updated last year
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,334Updated this week
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆119Apr 8, 2023Updated 3 years ago
- Assortment of hashing algorithms used in malware☆394Feb 8, 2026Updated 2 months ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- SHAREM is a shellcode analysis framework, capable of emulating more than 45,000 WinAPIs and virutally all Windows syscalls. It also conta…☆481Mar 22, 2026Updated 2 weeks ago
- A machine learning tool that ranks strings based on their relevance for malware analysis.☆754Mar 11, 2026Updated 3 weeks ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,497Apr 1, 2026Updated last week
- A GUI and CLI tool for removing bloat from executables☆447Jul 5, 2025Updated 9 months ago
- Automatically generate AV byte signatures from sets of similar binaries.☆286Dec 10, 2024Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,283Mar 26, 2026Updated 2 weeks ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- Hardcore Debugging☆938Jan 6, 2026Updated 3 months ago
- An extremely experimental Binary Ninja importer for the type layout information emitted by the -Zprint-type-sizes flag of the Rust compil…☆38Mar 19, 2026Updated 3 weeks ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated 2 years ago
- Malware Configuration And Payload Extraction☆3,100Apr 2, 2026Updated last week
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆651Apr 2, 2026Updated last week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Chepy is a python lib/cli equivalent of the awesome CyberChef tool.☆1,036Mar 14, 2026Updated 3 weeks ago
- A collection of modules and scripts to help with analyzing Nim binaries☆83Oct 7, 2024Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago