A VBA p-code disassembler
☆483Jun 12, 2021Updated 4 years ago
Alternatives and similar repositories for pcodedmp
Users that are interested in pcodedmp are comparing it to the libraries listed below
Sorting:
- A tool for detecting VBA stomping.☆101Aug 4, 2022Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,118Jul 10, 2024Updated last year
- a vba pcode decompiler based on pcodedmp☆112Sep 15, 2021Updated 4 years ago
- oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware a…☆3,295Feb 14, 2026Updated 2 weeks ago
- VBA Obfuscation Tools combined with an MS office document generator��☆551Oct 15, 2017Updated 8 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆2,232Dec 27, 2023Updated 2 years ago
- Malicious Macro Generator☆828Apr 17, 2019Updated 6 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆279Dec 13, 2021Updated 4 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆328Mar 26, 2019Updated 6 years ago
- NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements☆95Sep 19, 2017Updated 8 years ago
- Lazy Office Analyzer☆121Feb 15, 2017Updated 9 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆315Mar 24, 2018Updated 7 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆293Jun 27, 2017Updated 8 years ago
- analysis of visual basic code☆47Mar 25, 2018Updated 7 years ago
- HTA encryption tool for RedTeams☆1,424Nov 9, 2022Updated 3 years ago
- A tool to create a JScript file which loads a .NET v2 assembly from memory.☆1,317Jan 18, 2021Updated 5 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆812Dec 17, 2019Updated 6 years ago
- A static analyzer for PE executables.☆1,107Updated this week
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆638Jul 16, 2023Updated 2 years ago
- SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approa…☆290Aug 7, 2020Updated 5 years ago
- Implementation of the compression algorithm used in VBA projects within MS Office applications in C#☆22Apr 29, 2019Updated 6 years ago
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,109Nov 3, 2017Updated 8 years ago
- Partial decompiler for Visual Basic. Code source of file struture infomation.☆140Dec 21, 2025Updated 2 months ago
- Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.☆164Apr 10, 2023Updated 2 years ago
- Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)☆760Jan 28, 2019Updated 7 years ago
- Frida.re based RunPE (and MapViewOfSection) extraction tool☆114Mar 2, 2017Updated 8 years ago
- 🔵 Ethereum and BNB (BSC) Mev bot - Arbitrage☆358Feb 11, 2026Updated 2 weeks ago
- A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container☆1,371Dec 9, 2024Updated last year
- Malware Configuration And Payload Extraction☆761Nov 22, 2024Updated last year
- Obfuscate specific windows apis with different apis☆1,021Feb 21, 2021Updated 5 years ago
- Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection☆82Mar 22, 2017Updated 8 years ago
- WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…☆351Aug 27, 2018Updated 7 years ago
- ☆826Dec 28, 2019Updated 6 years ago
- ☆229May 10, 2018Updated 7 years ago
- Demos of various injection techniques found in malware☆796Feb 15, 2022Updated 4 years ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,897Updated this week
- Lateral Movement technique using DCOM and HTA☆235Oct 18, 2022Updated 3 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆437Aug 22, 2018Updated 7 years ago