deepinstinct / NSISExtractor
Extract the original ransomware binary from an NSIS installer
☆15Updated 8 years ago
Alternatives and similar repositories for NSISExtractor:
Users that are interested in NSISExtractor are comparing it to the libraries listed below
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14Updated 4 years ago
- Archive of ransomware decryptors☆29Updated 7 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆36Updated 7 years ago
- Yara sort☆13Updated this week
- ☆22Updated 4 years ago
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆21Updated 5 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 4 years ago
- A small utility to run raw code chunks in the executable memory area.☆14Updated 10 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆16Updated 8 years ago
- Scanning and identifying XOR encrypted PE files in PE resources☆27Updated 10 years ago
- Help deobfuscate VBScript☆15Updated 2 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- Automatic generator of YARA modules based in protocol buffers☆16Updated 2 months ago
- Simple decrypter for strings used in SamSam Ransomware samples.☆17Updated 5 years ago
- It's not just UsnJrnl (USN Journal Records/Change Journal Records) parser.☆23Updated 6 years ago
- Simple shellcode injector.☆14Updated 6 years ago
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆10Updated 4 years ago
- My collection of unpackers for malware packers/crypters☆28Updated 7 years ago
- ☆16Updated 2 years ago
- ☆21Updated 9 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- IoC's, PCRE's, YARA's etc☆24Updated last month
- CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…☆35Updated 8 years ago
- Redirects a specified API for a one time execution of code upon injection into a process.☆15Updated 4 years ago
- Capture BAT is a behavioral analysis tool of applications for the Win32 operating system family.☆32Updated 11 years ago
- Yaras Random☆20Updated 6 years ago
- ☆26Updated last year
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆15Updated 8 years ago
- Sample libraries to be used with IAT Patcher☆33Updated 2 years ago