Alternatives and similar repositories for mcrit

Users that are interested in mcrit are comparing it to the libraries listed below

• mbrengel / yarix
  ☆58Updated 4 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆72Updated last year
• danielplohmann / docker-mcrit
  Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)
  ☆16Updated 3 months ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 3 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆38Updated 4 years ago
• g-les / floss2yar
  ☆15Updated 2 years ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆90Updated last year
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated 2 years ago
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆51Updated last year
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 4 years ago
• danielplohmann / mcrit-data
  A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)
  ☆11Updated last year
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆29Updated 4 years ago
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆66Updated last year
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 3 years ago
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆173Updated last year
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆41Updated 5 years ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆50Updated last year
• pan-unit42 / dotnetfile
  ☆104Updated last year
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆58Updated 4 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆17Updated 4 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 4 years ago
• avast / yls
  YARA Language Server
  ☆71Updated this week
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆105Updated 9 months ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆146Updated last year
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆83Updated last year
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆31Updated last year
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 2 years ago
• conix-security / machoke
  ☆51Updated 6 years ago