cysinfo / Malpimp
Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook the APIs. It provides include and exclude policies to increase the control on the application in execution. Being command-line tool makes it perfect for automation of malware as well as API tracing of normal ap…
☆8Updated 8 years ago
Alternatives and similar repositories for Malpimp:
Users that are interested in Malpimp are comparing it to the libraries listed below
- ☆12Updated 7 years ago
- Shellcode tracer☆15Updated 8 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Updated 9 years ago
- ☆28Updated 7 years ago
- ☆22Updated 7 years ago
- HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit using GDI -> Low Integrity to System☆14Updated 8 years ago
- Find subfolders in the Windows folder which have bad ACL and allow write and execute☆14Updated 9 years ago
- CVE-2014-0816☆25Updated 8 years ago
- Framework complet d'analyse de malware☆12Updated 9 years ago
- Short for Good Ware; it assists Reverse Engineers in the analysis of Windows Malware.☆24Updated 12 years ago
- Malware analyses and helpful scripts☆29Updated 2 years ago
- Post-explotation Hacks☆14Updated 6 years ago
- Flash Exploit Detector☆7Updated 9 years ago
- Anti-AV compilation☆42Updated 11 years ago
- Malware monitor template based on MinHook☆16Updated 10 years ago
- wow64 syscall filter☆13Updated 10 years ago
- Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…☆13Updated 12 years ago
- x64 Windows Software Fault Injection Tool☆17Updated 7 years ago
- UAC Copy Tool☆9Updated 9 years ago
- Exploit WinIo - Vidix and Run Shellcode in Windows Kerne ( local Privilege escalation )☆28Updated 9 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- Cross-referencing network communication for detecting Advanced Persistent Threat (APT) malware☆6Updated 9 years ago
- Scanner for Regin Virtual Filesystems☆26Updated 10 years ago
- PCAUSA Rawether for Windows Local Privilege Escalation☆38Updated 8 years ago
- Windows registry files interactive viewer☆9Updated 8 years ago
- ☆10Updated 9 years ago
- IDA Pomidor is a plugin for Hex-Ray's IDA Pro disassembler that will help you retain concentration and productivity during long reversing…☆35Updated 10 years ago
- ☆22Updated 7 years ago
- ☆10Updated 7 years ago
- Agent installed on node to launch IDA,Bindiff,... and send results to the server ( AutoDiffWeb )☆10Updated 9 years ago