bontchev / pcodedmpLinks
A VBA p-code disassembler
☆473Updated 4 years ago
Alternatives and similar repositories for pcodedmp
Users that are interested in pcodedmp are comparing it to the libraries listed below
Sorting:
- a vba pcode decompiler based on pcodedmp☆109Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,094Updated 11 months ago
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆278Updated 3 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆288Updated 8 years ago
- A VBA implementation of the RunPE technique or how to bypass application whitelisting.☆809Updated 5 years ago
- VBA Dynamic Hook dynamically analyzes VBA macros inside Office documents by hooking function calls☆148Updated 9 years ago
- VBA Obfuscation Tools combined with an MS office document generator☆549Updated 7 years ago
- ☆428Updated 2 years ago
- PowerShell script for deobfuscating encoded PowerShell scripts☆424Updated 4 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆581Updated last year
- A tool for detecting VBA stomping.☆100Updated 2 years ago
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆299Updated last year
- Allows you to quickly query a Windows machine for RAM artifacts☆221Updated 4 years ago
- Regipy is an os independent python library for parsing offline registry hives☆257Updated this week
- Windows registry file format specification☆339Updated 6 years ago
- A list of ways to execute code on Windows using legitimate Windows tools☆307Updated 6 years ago
- Pure Python parser for Windows Registry hives.☆430Updated 5 months ago
- Extract embedded files and macros from office documents.☆181Updated last year
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated 2 weeks ago
- ☆772Updated 2 years ago
- ☆304Updated 4 years ago
- ☆217Updated 7 years ago
- Quickly debug shellcode extracted during malware analysis☆604Updated 2 years ago
- Commandline low level file extractor for NTFS☆290Updated 5 years ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆162Updated 6 months ago
- ☆277Updated 2 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆108Updated 4 years ago
- An AFF4 C++ implementation.☆203Updated 2 years ago
- A modern Python-3-based alternative to RegRipper☆196Updated 2 months ago
- Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.☆351Updated 10 months ago