carbonblack / binee

Related projects ⓘ

Alternatives and complementary repositories for binee

• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆241Updated last year
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆288Updated 4 months ago
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆565Updated last year
• unipacker / unipacker
  Automatic and platform-independent unpacker for Windows binaries based on emulation
  ☆659Updated last month
• mandiant / FIDL
  A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research
  ☆450Updated last year
• thalium / icebox
  Virtual Machine Introspection, Tracing & Debugging
  ☆558Updated 2 years ago
• Cisco-Talos / Ghidraaas
  ☆219Updated last year
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆203Updated 3 years ago
• a1ext / labeless
  Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…
  ☆515Updated 2 years ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆394Updated 11 months ago
• 0x6d696368 / ghidra_scripts
  Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.
  ☆157Updated 4 years ago
• secrary / makin
  makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
  ☆732Updated 5 years ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆259Updated 9 months ago
• trailofbits / winchecksec
  Checksec, but for Windows: static detection of security mitigations in executables
  ☆565Updated last year
• d3v1l401 / FindCrypt-Ghidra
  IDA Pro's FindCrypt ported to Ghidra, with an updated and customizable signature database
  ☆522Updated last year
• vivisect / vivisect
  ☆939Updated 2 months ago
• Cisco-Talos / GhIDA
  ☆780Updated 3 years ago
• danielplohmann / smda
  SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.
  ☆226Updated 3 months ago
• nccgroup / DriverBuddy
  DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.
  ☆352Updated 4 years ago
• cea-sec / Sibyl
  A Miasm2 based function divination.
  ☆531Updated 4 years ago
• 0x6d696368 / ghidra-data
  Supporting Data Archives for Ghidra
  ☆259Updated 4 years ago
• FSecureLABS / win_driver_plugin
  A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
  ☆422Updated 6 years ago
• secrary / DrSemu
  DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
  ☆269Updated 5 years ago
• CheckPointSW / Karta
  Karta - source code assisted fast binary matching plugin for IDA
  ☆864Updated last year
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,018Updated 10 months ago
• mandiant / rvmi
  rVMI - A New Paradigm For Full System Analysis
  ☆351Updated 7 years ago
• mxmssh / drltrace
  Drltrace is a library calls tracer for Windows and Linux applications.
  ☆390Updated 4 years ago
• hyuunnn / Hyara
  Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
  ☆223Updated last month
• pbiernat / ripr
  Package Binary Code as a Python class using Binary Ninja and Unicorn Engine
  ☆397Updated 2 years ago
• mandiant / SimplifyGraph
  IDA Pro plugin to assist with complex graphs
  ☆312Updated last year