carbonblack / binee
Binee: binary emulation environment
☆500Updated last year
Related projects: ⓘ
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆239Updated last year
- A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research☆451Updated last year
- Checksec, but for Windows: static detection of security mitigations in executables☆558Updated last year
- A Binary Genetic Traits Lexer Framework☆385Updated 9 months ago
- IDA Pro's FindCrypt ported to Ghidra, with an updated and customizable signature database☆511Updated last year
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆639Updated 3 months ago
- ☆217Updated last year
- Generating YARA rules based on binary code☆198Updated 2 years ago
- A Miasm2 based function divination.☆531Updated 4 years ago
- Quickly debug shellcode extracted during malware analysis☆547Updated last year
- Repository for community provided Binary Ninja plugins☆427Updated this week
- INFILTRATE 2019 Demo Materials☆338Updated last year
- ☆928Updated 3 weeks ago
- Automatically generate AV byte signatures from sets of similar binaries.☆256Updated 7 months ago
- rVMI - A New Paradigm For Full System Analysis☆350Updated 6 years ago
- IDA Pro plugin to assist with complex graphs☆305Updated last year
- Package Binary Code as a Python class using Binary Ninja and Unicorn Engine☆394Updated 2 years ago
- Virtual Machine Introspection, Tracing & Debugging☆558Updated 2 years ago
- Karta - source code assisted fast binary matching plugin for IDA☆859Updated last year
- idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro☆376Updated 11 months ago
- A tool to detect and crash Cuckoo Sandbox☆286Updated last month
- Port of devttyS0's IDA plugins to the Ghidra plugin framework, new plugins as well.☆459Updated 3 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆730Updated 5 years ago
- DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior☆266Updated 4 years ago
- ☆769Updated 3 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆221Updated last month
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆411Updated 4 years ago
- Pure Python parser and analyzer for IDA Pro database files (.idb).☆455Updated 3 years ago
- DriverBuddy is an IDA Python script to assist with the reverse engineering of Windows kernel drivers.☆350Updated 4 years ago
- ☆786Updated last year