Ablation is a tool for augmenting static analysis by extracting information at runtime, and importing it into IDA. It can resolve virtual calls, reveal interesting code, exclude heavily traversed regions, identify untested or undocumented features, visually diff samples, or perform root cause analysis simply by running samples. My favourite howe…
☆49Aug 23, 2016Updated 9 years ago
Alternatives and similar repositories for Ablation
Users that are interested in Ablation are comparing it to the libraries listed below
Sorting:
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- Prototype for an in memory fuzzer☆13Aug 1, 2017Updated 8 years ago
- ☆16Nov 10, 2015Updated 10 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- 🐧 A simple kernel-level rootkit☆21Mar 1, 2016Updated 10 years ago
- ☆10Sep 29, 2019Updated 6 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- PE/PE +(64bit) Viewer (Qt 5.8)☆10Aug 3, 2018Updated 7 years ago
- Demos presented on Hackerfest 2015☆14Nov 9, 2015Updated 10 years ago
- 虚拟机逃逸exp工具 VMware Escape Exploit before VMware WorkStation 12.5.5☆10Sep 10, 2017Updated 8 years ago
- Windows hidden thread suspend POC with code injection☆12May 27, 2017Updated 8 years ago
- Open-Source Anti-RMT-Spam Firewall☆12Mar 28, 2016Updated 9 years ago
- DNS反弹shell客户端☆13Jul 24, 2016Updated 9 years ago
- DNS TCP to UDP proxy☆10Jul 19, 2015Updated 10 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- Native module dumper☆13Aug 28, 2017Updated 8 years ago
- 010 Editor Template for parsing VMware Disk(vmdk) images☆16Sep 12, 2018Updated 7 years ago
- Simpe C tool to analyze x86 binary for used instructions set☆14Dec 31, 2018Updated 7 years ago
- ☆13Jun 20, 2013Updated 12 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- Detect the SCI in windows.☆11Mar 23, 2017Updated 8 years ago
- A hack for WolfTeam (FPS). Developed and commercialized many years ago.☆12Oct 29, 2017Updated 8 years ago
- Securing Data Analytics on Intel SGX using Randomization☆13Aug 30, 2017Updated 8 years ago
- League Sandbox's Replay Inspector☆12Sep 6, 2018Updated 7 years ago
- midfunction d3d basehook for winxp, win7, win8, win10☆17Jan 21, 2019Updated 7 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- WinPCAP for NDIS 6.x☆14Jun 24, 2019Updated 6 years ago
- Decompresses and compresses the Windows bootmgr (Vista, 7, and 8)☆24Oct 3, 2015Updated 10 years ago
- Hidden monitoring and blocking Android apps☆10May 2, 2017Updated 8 years ago
- ☆22Jul 7, 2017Updated 8 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- ☆14Jun 27, 2017Updated 8 years ago
- lkm rootkit☆15May 12, 2014Updated 11 years ago
- 一些Win32或MFC常用的工具类☆14Jan 20, 2014Updated 12 years ago
- ☆17Mar 3, 2016Updated 10 years ago
- ☆15Jul 22, 2024Updated last year
- Various libraries focused on examining/parsing NTFS-specific structures☆16Oct 25, 2015Updated 10 years ago
- Remote Assistance Volatile Environment LPE☆15Jun 28, 2025Updated 8 months ago