Handy scripts to speed up malware analysis
☆34Oct 3, 2023Updated 2 years ago
Alternatives and similar repositories for Malware-Analysis-Scripts
Users that are interested in Malware-Analysis-Scripts are comparing it to the libraries listed below
Sorting:
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆18Oct 7, 2016Updated 9 years ago
- Malware samples observed in the wild from time to time☆12Jul 29, 2019Updated 6 years ago
- Cheat-Sheet with events too look out for when analysing malicious Office documents☆19Oct 21, 2017Updated 8 years ago
- IoC's, PCRE's, YARA's etc☆23Mar 25, 2025Updated 11 months ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Aug 17, 2019Updated 6 years ago
- please use https://github.com/fireeye/vivisect instead☆16Oct 21, 2025Updated 4 months ago
- certstream + analytics☆11Jan 17, 2020Updated 6 years ago
- Simple Distributed IOC Scanner☆12Jul 27, 2015Updated 10 years ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆51Sep 6, 2023Updated 2 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆17Oct 8, 2016Updated 9 years ago
- analysis of visual basic code☆47Mar 25, 2018Updated 7 years ago
- Identifies Bluetooth Low-energy devices☆16Jul 26, 2020Updated 5 years ago
- Useful commands for infosec☆29Feb 13, 2023Updated 3 years ago
- xlrd2 is a variant of xlrd that is actively maintained☆23Aug 1, 2024Updated last year
- Static analysis tools for Microsoft Office Open XML files and documents☆73Oct 13, 2017Updated 8 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆19Jul 15, 2021Updated 4 years ago
- Fix acquired .evt - Windows Event Log files (Forensics)☆18Mar 29, 2016Updated 9 years ago
- SWF parser and AVM2 (Actionscript 3) bytecode parser☆19Mar 26, 2017Updated 8 years ago
- Containerized IDA Pro (Windows/Wine), DEPRECIATED, please use https://github.com/NyaMisty/docker-wine-ida☆26Nov 23, 2017Updated 8 years ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆12Dec 3, 2023Updated 2 years ago
- Malware (analysis results, tools, reference, analysis methods, etc.)☆16Apr 18, 2023Updated 2 years ago
- VBA analysis tools☆25Aug 15, 2025Updated 7 months ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 3 years ago
- Official VirusTotal plugin for IDA Pro☆181Feb 4, 2026Updated last month
- Historical Observations of Actionable Reputation Data☆13Jun 26, 2018Updated 7 years ago
- Scripts targeting specific families☆13Jul 3, 2017Updated 8 years ago
- Lightweight Microsoft OLE file parser in pure Python☆20Oct 17, 2019Updated 6 years ago
- Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.☆51Apr 9, 2019Updated 6 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- It's like DocBleach, but in your browser☆18Oct 24, 2019Updated 6 years ago
- recovers and reconstructs fragmented Evtx files from disk images, memory dumps, pagefiles and unallocated space☆13Feb 3, 2015Updated 11 years ago
- hcidump for android☆11Jan 28, 2015Updated 11 years ago
- Event Log Analysis Tools☆31Sep 27, 2016Updated 9 years ago
- ☆13Apr 6, 2016Updated 9 years ago
- CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, auto…☆10Mar 2, 2021Updated 5 years ago
- An Android wrapper for Arc☆11May 13, 2018Updated 7 years ago
- ☆11Feb 8, 2026Updated last month
- My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …☆10Jul 26, 2019Updated 6 years ago
- Go bindings for YARA☆18Mar 10, 2022Updated 4 years ago