danielplohmann / mcrit

Related projects ⓘ

Alternatives and complementary repositories for mcrit

• mbrengel / yarix
  ☆57Updated 3 years ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆82Updated 2 years ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• g-les / floss2yar
  ☆15Updated 2 years ago
• danielplohmann / docker-mcrit
  Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)
  ☆15Updated 6 months ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆62Updated 7 months ago
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆49Updated last year
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆62Updated 10 months ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• pan-unit42 / dotnetfile
  ☆100Updated last year
• danielplohmann / mcrit-data
  A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)
  ☆11Updated 6 months ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆171Updated 9 months ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated last year
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆47Updated last year
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 5 months ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated last year
• OALabs / UnpacMe-IDA-Byte-Search
  UnpacMe IDA Byte Search
  ☆26Updated last year
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆100Updated 2 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• myrtus0x0 / smoke_conf_extract
  ☆13Updated 2 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆48Updated 8 months ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆24Updated 2 years ago
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆102Updated 2 years ago
• NozomiNetworks / upx-recovery-tool
  ☆96Updated last year
• danielplohmann / idascope
  An IDA Pro extension for easier (malware) reverse engineering
  ☆110Updated 2 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆67Updated 2 years ago