High Octane Triage Analysis
☆824Mar 14, 2026Updated this week
Alternatives and similar repositories for refinery
Users that are interested in refinery are comparing it to the libraries listed below
Sorting:
- A Binary Genetic Traits Lexer Framework☆524Updated this week
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆856Feb 2, 2024Updated 2 years ago
- Windows kernel and user mode emulation.☆1,896Mar 12, 2026Updated last week
- Malduck is your ducky companion in malware analysis journeys☆350Jun 22, 2025Updated 8 months ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,890Updated this week
- Dynamic unpacker based on PE-sieve☆797Sep 13, 2025Updated 6 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆699Mar 12, 2026Updated last week
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated last month
- Quickly debug shellcode extracted during malware analysis☆627May 23, 2023Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Mar 9, 2026Updated last week
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,645Mar 11, 2026Updated last week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,923Updated this week
- a PE Loader and Windows API tracer. Useful in malware analysis.☆142Sep 19, 2022Updated 3 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,576Oct 31, 2025Updated 4 months ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆263Mar 27, 2023Updated 2 years ago
- A Pin Tool for tracing API calls etc☆1,634Feb 8, 2026Updated last month
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 8 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,119Jul 10, 2024Updated last year
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,319Oct 31, 2025Updated 4 months ago
- Assortment of hashing algorithms used in malware☆396Feb 8, 2026Updated last month
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆119Apr 8, 2023Updated 2 years ago
- SHAREM is a shellcode analysis framework, capable of emulating more than 45,000 WinAPIs and virutally all Windows syscalls. It also conta…☆479Mar 13, 2026Updated last week
- A machine learning tool that ranks strings based on their relevance for malware analysis.☆754Mar 11, 2026Updated last week
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,476Mar 2, 2026Updated 2 weeks ago
- A GUI and CLI tool for removing bloat from executables☆446Jul 5, 2025Updated 8 months ago
- Automatically generate AV byte signatures from sets of similar binaries.☆288Dec 10, 2024Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,278Mar 1, 2026Updated 2 weeks ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- Hardcore Debugging☆935Jan 6, 2026Updated 2 months ago
- An extremely experimental Binary Ninja importer for the type layout information emitted by the -Zprint-type-sizes flag of the Rust compil…☆38Jul 3, 2023Updated 2 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- Malware Configuration And Payload Extraction☆3,065Mar 13, 2026Updated last week
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆654Mar 14, 2025Updated last year
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Chepy is a python lib/cli equivalent of the awesome CyberChef tool.☆1,034Mar 14, 2026Updated last week
- A collection of modules and scripts to help with analyzing Nim binaries☆83Oct 7, 2024Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago