Ablation is a tool for augmenting static analysis by extracting information at runtime, and importing it into IDA. It can resolve virtual calls, reveal interesting code, exclude heavily traversed regions, identify untested or undocumented features, visually diff samples, or perform root cause analysis simply by running samples. My favourite howe…
☆49Aug 23, 2016Updated 9 years ago
Alternatives and similar repositories for Ablation
Users that are interested in Ablation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆16Nov 10, 2015Updated 10 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- ☆10Sep 29, 2019Updated 6 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- Prototype for an in memory fuzzer☆13Aug 1, 2017Updated 8 years ago
- 🐧 A simple kernel-level rootkit☆21Mar 1, 2016Updated 10 years ago
- Windows hidden thread suspend POC with code injection☆12May 27, 2017Updated 8 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- DNS反弹shell客户端☆13Jul 24, 2016Updated 9 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- Tool to automatically make Cheat Engine attach to a process via the command line.☆29Jun 25, 2017Updated 8 years ago
- ☆17Mar 3, 2016Updated 10 years ago
- PE32 binary + W32 payload☆11Jul 23, 2017Updated 8 years ago
- Open-Source Anti-RMT-Spam Firewall☆12Mar 28, 2016Updated 9 years ago
- Encrypting VHD parser driver for Hyper-V☆10Apr 22, 2016Updated 9 years ago
- DNS TCP to UDP proxy☆10Jul 19, 2015Updated 10 years ago
- Decompresses and compresses the Windows bootmgr (Vista, 7, and 8)☆24Oct 3, 2015Updated 10 years ago
- Android runtime jit binary file parser☆13Dec 20, 2017Updated 8 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- Tool that dumps beacon frames to a pcap file. Works on Windows Vista or Later with any Wireless Card.☆27Mar 19, 2022Updated 4 years ago
- 010 Editor Template for parsing VMware Disk(vmdk) images☆16Sep 12, 2018Updated 7 years ago
- ☆13Jun 20, 2013Updated 12 years ago
- Various libraries focused on examining/parsing NTFS-specific structures☆16Oct 25, 2015Updated 10 years ago
- midfunction d3d basehook for winxp, win7, win8, win10☆17Jan 21, 2019Updated 7 years ago
- Hidden monitoring and blocking Android apps☆10May 2, 2017Updated 8 years ago
- WinPCAP for NDIS 6.x☆14Jun 24, 2019Updated 6 years ago
- Simpe C tool to analyze x86 binary for used instructions set☆14Dec 31, 2018Updated 7 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- Securing Data Analytics on Intel SGX using Randomization☆13Aug 30, 2017Updated 8 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆39Mar 15, 2017Updated 9 years ago
- Native module dumper☆13Aug 28, 2017Updated 8 years ago
- ☆30May 23, 2017Updated 8 years ago
- Detect the SCI in windows.☆11Mar 23, 2017Updated 9 years ago
- simple rootkit for computer security class☆15Dec 18, 2012Updated 13 years ago
- Tool to encrypt/decrypt/bruteforce EDAT/SDAT files from PS3 games.☆21May 10, 2014Updated 11 years ago