conix-security / machoke

Related projects: ⓘ

• iNod3 / sandbagility
  ☆22Updated 5 years ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆25Updated 5 years ago
• necst / crave
  Framework to automatically test and explore the capabilities of generic AV engines
  ☆70Updated 5 years ago
• malrev / avclassplusplus
  ☆35Updated this week
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆88Updated 5 years ago
• kukfa / bindbg
  Binary Ninja plugin that syncs WinDbg to Binary Ninja
  ☆47Updated 6 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆48Updated 8 years ago
• alexander-hanel / ida_yara
  A python script that can be used to scan data within in an IDB using Yara.
  ☆21Updated 6 years ago
• Cisco-Talos / dotNET_WinDBG
  ☆57Updated this week
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 4 years ago
• andreafioraldi / r2angrdbg
  Use angr inside the radare2 debugger. Create an angr state from the current debugger state.
  ☆34Updated 5 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆38Updated 4 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 4 years ago
• marcusbotacin / Anti.Analysis
  Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis
  ☆43Updated 7 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 7 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆45Updated 4 years ago
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆46Updated last year
• joxeankoret / maltindex
  Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns
  ☆65Updated 7 years ago
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆32Updated 5 years ago
• Winbagility / Winbagility
  [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;
  ☆72Updated 5 years ago
• cmatthewbrooks / r2kit
  A set of scripts for a radare-based malware code analysis workflow
  ☆66Updated 5 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 9 years ago
• karttoon / binsequencer
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆72Updated 2 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆63Updated 2 years ago
• corelan / pin
  Collection of pin tools
  ☆50Updated 8 years ago
• adamwallred / nvmtrace
  Proof-of-concept automated baremetal malware analysis framework.
  ☆14Updated 8 years ago
• Cisco-Talos / CASC
  ☆43Updated 6 years ago
• bfosterjr / ufgraph
  ☆39Updated 3 years ago
• GDATAAdvancedAnalytics / bindifflib
  Automated library compilation and PDB annotation with CMake and IDA Pro
  ☆20Updated 5 years ago