danielplohmann / smdaLinks
SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.
☆241Updated last month
Alternatives and similar repositories for smda
Users that are interested in smda are comparing it to the libraries listed below
Sorting:
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆238Updated 10 months ago
- grap: define and match graph patterns within binaries☆154Updated 3 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆278Updated 8 months ago
- ☆227Updated 2 years ago
- A plugin based on IDAPython for a functional DWIM interface. Current development against most recent IDA is in the "persistence-refactor"…☆326Updated 3 weeks ago
- A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research☆463Updated 2 years ago
- idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro☆388Updated last year
- Python bindings to Ghidra's SLEIGH library for disassembly and lifting to P-Code IR☆200Updated last week
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆254Updated 2 years ago
- Toolkit for enriching and speeding up static malware analysis☆168Updated 3 years ago
- IDA Pro plugin to assist with complex graphs☆318Updated 2 years ago
- Devirtualize Virtual Calls☆115Updated 3 years ago
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- Bindings for Microsoft WinDBG TTD☆226Updated 2 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 3 years ago
- ☆181Updated 6 years ago
- IDA python plugin to scan binary with Yara rules☆177Updated last year
- A comprehensive binary emulation and instrumentation platform.☆416Updated 2 years ago
- Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.☆72Updated 3 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆400Updated 2 years ago
- IDA Signsrch☆157Updated 10 years ago
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- IFL - Interactive Functions List (plugin for IDA Pro)☆466Updated 6 months ago
- Windows API tracer for malware (oldname: unitracer)☆119Updated 7 years ago
- LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger☆221Updated 4 years ago
- scripts/plugins for IDA Pro☆176Updated 7 months ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 4 years ago
- A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in exec…☆97Updated last year
- HexRays ctree visualization plugin☆420Updated 11 months ago