bridgeythegeek / editbox
EditBox is a plugin for the Volatility Framework. It extracts the text from Windows Edit controls, that is, textboxes as generated by Windows Common Controls.
☆24Updated 7 years ago
Alternatives and similar repositories for editbox:
Users that are interested in editbox are comparing it to the libraries listed below
- Volatility Plugins☆21Updated 9 years ago
- swffile.py - SWF file parser module in Python☆28Updated 8 years ago
- Static and automated/dynamic malware analysis☆47Updated 9 years ago
- Exploit Reliability Testing System☆34Updated 9 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 7 years ago
- Resolves DLL API entrypoints for a process w/ remote query capabilities.☆55Updated 7 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- ☆29Updated 8 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- ☆42Updated 6 years ago
- IDATACO IDA Pro Plugin☆47Updated 8 years ago
- Script to parse first load time for Shell Extensions loaded by user. Also enumerates all loaded Shell Extensions that are only installed …☆20Updated 9 years ago
- misc scripts☆36Updated 6 years ago
- Archive Mirror for recently republished PoC/Exploit code☆17Updated 7 years ago
- A collection of Volatility Framework plugins.☆26Updated 11 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- ☆68Updated 7 years ago
- Collection of my Python Scripts☆41Updated 4 years ago
- library to decode/parse zeus-like configuration files☆29Updated 7 years ago
- Volatility plugin to extract X screenshots from a memory dump☆37Updated 6 years ago
- Identify botnet panels with Ensembled Decision Trees☆18Updated 8 years ago
- Torified Cuckoo malware analyser in a Docker container with VirtualBox☆2Updated 7 years ago
- Development guide for Volatility Plugins☆23Updated 7 years ago
- Yet another Python library to read and write PE/PE+ files.☆80Updated 8 years ago
- Extract unencrypted SSH keys from pageant memory dump☆15Updated 9 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and V…☆44Updated 8 years ago
- POC for IAT Parsing Payloads☆47Updated 8 years ago
- ASERT shared scripts for reversing☆32Updated 7 years ago
- ripPE - section extractor and profiler for PE file analysis☆32Updated 10 years ago