doomedraven / Tools

Related projects ⓘ

Alternatives and complementary repositories for Tools

• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆102Updated last week
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆319Updated 5 months ago
• CheckPointSW / InviZzzible
  InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…
  ☆537Updated 2 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆241Updated last year
• conix-security / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆356Updated 9 years ago
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆196Updated 2 years ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆155Updated 2 years ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆203Updated 3 years ago
• marcosd4h / memhunter
  Live hunting of code injection techniques
  ☆375Updated 5 years ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated last year
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆543Updated this week
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆658Updated 8 months ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆394Updated 11 months ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆86Updated this week
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆393Updated 3 weeks ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆123Updated last month
• intezer / yara-rules
  ☆123Updated 3 years ago
• season-lab / bluepill
  BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
  ☆122Updated 2 years ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆363Updated 2 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆85Updated 5 years ago
• carbonblack / binee
  Binee: binary emulation environment
  ☆503Updated last year
• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆172Updated 6 months ago
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆328Updated this week
• therealdreg / DbgChild
  Debug Child Process Tool (auto attach)
  ☆271Updated last year
• Karneades / malware-persistence
  Collection of malware persistence and hunting information. Be a persistent persistence hunter!
  ☆165Updated 2 months ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆259Updated 9 months ago
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆112Updated last week
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆414Updated this week
• D4stiny / PeaceMaker
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆417Updated 4 years ago
• marcosd4h / sysmonx
  SysmonX - An Augmented Drop-In Replacement of Sysmon
  ☆210Updated 5 years ago