Alternatives and similar repositories for mcrit:

Users that are interested in mcrit are comparing it to the libraries listed below

• mbrengel / yarix
  ☆58Updated 3 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆70Updated 11 months ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 3 years ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆50Updated last year
• danielplohmann / mcrit-data
  A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)
  ☆11Updated 10 months ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆88Updated last year
• danielplohmann / docker-mcrit
  Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)
  ☆15Updated last month
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆49Updated last year
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆28Updated 4 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆173Updated last year
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆40Updated 5 years ago
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆65Updated last year
• Dump-GUY / ghidra_scripts
  ☆69Updated last year
• g-les / floss2yar
  ☆15Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated last year
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆109Updated 3 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 4 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆50Updated last week
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 2 months ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆102Updated 6 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• pan-unit42 / dotnetfile
  ☆105Updated last year
• avast / yls
  YARA Language Server
  ☆69Updated 2 weeks ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆54Updated 3 years ago
• myrtus0x0 / smoke_conf_extract
  ☆13Updated 2 years ago
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆60Updated last week
• Heat-Miser / tinynuke-toolset
  Set of tools to analyze Tinynuke samples
  ☆15Updated 3 years ago