decalage2 / ViperMonkeyLinks
A VBA parser and emulation engine to analyze malicious macros.
☆1,096Updated last year
Alternatives and similar repositories for ViperMonkey
Users that are interested in ViperMonkey are comparing it to the libraries listed below
Sorting:
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,171Updated 2 weeks ago
- PowerShell script for deobfuscating encoded PowerShell scripts☆425Updated 4 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆583Updated last year
- Malware Configuration And Payload Extraction☆760Updated 8 months ago
- yarGen is a generator for YARA rules☆1,677Updated 3 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆710Updated 2 years ago
- A VBA p-code disassembler☆473Updated 4 years ago
- PowerShell Obfuscation Detection Framework☆740Updated last year
- Kaspersky's GReAT KLara☆710Updated last year
- A static analyzer for PE executables.☆1,070Updated last year
- Online hash checker for Virustotal and other services☆831Updated 4 months ago
- RDP Bitmap Cache parser☆549Updated 6 months ago
- Yara Rule Analyzer and Statistics☆376Updated 2 years ago
- Volatility plugins developed and maintained by the community☆365Updated 4 years ago
- ☆427Updated 2 years ago
- ☆713Updated 2 years ago
- analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…☆487Updated 2 weeks ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆613Updated 2 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,966Updated 3 months ago
- Please no pull requests for this repository. Thanks!☆2,272Updated last month
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆613Updated 2 weeks ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,165Updated last week
- Pure Python parser for Windows Event Log files (.evtx)☆751Updated last month
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆915Updated last year
- YARA malware query accelerator (web frontend)☆433Updated 4 months ago
- YARA Rules I come across on the internet☆346Updated last year
- Pure Python parser for Windows Registry hives.☆431Updated 6 months ago
- FAME Automates Malware Evaluation☆906Updated 3 months ago
- Volatility plugin for extracts configuration data of known malware☆490Updated last year
- ☆778Updated 2 years ago