danielplohmann / smdaLinks
SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.
☆239Updated last week
Alternatives and similar repositories for smda
Users that are interested in smda are comparing it to the libraries listed below
Sorting:
- grap: define and match graph patterns within binaries☆154Updated 3 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆277Updated 7 months ago
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆237Updated 9 months ago
- ☆226Updated 2 years ago
- IDA Pro plugin to assist with complex graphs☆318Updated 2 years ago
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- ☆181Updated 6 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆253Updated 2 years ago
- The Windows Library for Intel Process Trace (WinIPT) is a project that leverages the new Intel Processor Trace functionality exposed by W…☆395Updated 2 years ago
- A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research☆461Updated 2 years ago
- A plugin based on IDAPython for a functional DWIM interface. Current development against most recent IDA is in the "persistence-refactor"…☆325Updated last week
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 3 years ago
- Toolkit for enriching and speeding up static malware analysis☆168Updated 3 years ago
- idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro☆388Updated last year
- Bindings for Microsoft WinDBG TTD☆226Updated 2 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- Python bindings to Ghidra's SLEIGH library for disassembly and lifting to P-Code IR☆198Updated last week
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- Devirtualize Virtual Calls☆115Updated 3 years ago
- IDA python plugin to scan binary with Yara rules☆177Updated last year
- LibVMI-based debug server, implemented in Python. Building a guest aware, stealth and agentless full-system debugger☆219Updated 4 years ago
- Windows API tracer for malware (oldname: unitracer)☆118Updated 7 years ago
- ☆108Updated 6 years ago
- IDA Signsrch☆157Updated 10 years ago
- Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.☆158Updated 5 years ago
- IFL - Interactive Functions List (plugin for IDA Pro)☆465Updated 5 months ago
- Arancino is a dynamic protection framework that defends Intel Pin against anti-instrumentation attacks.☆72Updated 3 years ago
- scripts/plugins for IDA Pro☆176Updated 6 months ago
- Code and exercises for a workshop on z3 and angr☆228Updated 4 years ago
- Static unpacker for FinSpy VM☆102Updated 4 years ago