danielplohmann / mcritLinks
The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash algorithm in the context of code similarity.
☆92Updated last week
Alternatives and similar repositories for mcrit
Users that are interested in mcrit are comparing it to the libraries listed below
Sorting:
- ☆58Updated 4 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)☆16Updated 3 months ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- ☆15Updated 2 years ago
- Use YARA rules on Time Travel Debugging traces☆90Updated last year
- Robust Automated Malware Unpacker☆84Updated 2 years ago
- Port of the binary diffing library, diaphora, for radare2 and mariadb☆51Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)☆11Updated last year
- Yet another rule generator for Yara☆29Updated 4 years ago
- Powershell script deobfuscation using AST in Python☆66Updated last year
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- ☆71Updated last year
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- Malware Configuration Extraction Modules☆50Updated last year
- ☆104Updated last year
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Tools for inspecting YARA bytecode☆17Updated 4 years ago
- TA505 unpacker Python 2.7☆47Updated 4 years ago
- YARA Language Server☆71Updated this week
- This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…☆105Updated 9 months ago
- A golang CLI tool to download malware from a variety of sources.☆146Updated last year
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated last year
- Writeups for CTF challenges☆31Updated last year
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- ☆51Updated 6 years ago