Alternatives and similar repositories for writeups

Users that are interested in writeups are comparing it to the libraries listed below

• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆38Updated 4 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆42Updated 6 years ago
• mrphrazer / hitb2021ams_deobfuscation
  ☆72Updated 4 years ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆37Updated 6 years ago
• williballenthin / idawilli
  IDA Pro resources, scripts, and configurations
  ☆119Updated last month
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆110Updated 5 years ago
• danielplohmann / idascope
  An IDA Pro extension for easier (malware) reverse engineering
  ☆115Updated 3 years ago
• ret2jazzy / ELFPatch
  A library for patching ELFs
  ☆57Updated 4 years ago
• d00rt / ebfuscator
  Ebfuscator: Abusing system errors for binary obfuscation
  ☆52Updated 5 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆44Updated last year
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆92Updated 6 years ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆65Updated 3 years ago
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆29Updated 4 months ago
• Dump-GUY / ghidra_scripts
  ☆72Updated 2 years ago
• 0x6d696368 / ghidra_scripts
  Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.
  ☆160Updated 5 years ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago
• GoSecure / advanced-binary-analysis
  Materials for the Binary Analysis Workshop presented at NorthSec 2020
  ☆69Updated 4 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆97Updated 3 years ago
• peleghd / Windows-10-Exploitation
  ☆135Updated 5 years ago
• yrp604 / bdump
  ☆50Updated 3 years ago
• Bw3ll / JOP_ROCKET
  This framework enables user to discover JOP gagdets and can automate building a complete JOP chain to bypass DEP. JOP ROCKET is the ultim…
  ☆108Updated last year
• nneonneo / sstic-2021
  Files for my solution to the SSTIC 2021 challenge
  ☆15Updated 4 years ago
• arnaugamez / talks
  Slides, recordings and materials of my public presentations, talks and workshops.
  ☆78Updated 4 months ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆121Updated 6 years ago
• IOActive / kmdf_re
  Helper idapython code for reversing kmdf drivers
  ☆75Updated 3 years ago
• cbayet / PoolSprayer
  Simple library to spray the Windows Kernel Pool
  ☆110Updated 5 years ago
• RolfRolles / IDBs
  Analyses in IDA/Hex-Rays
  ☆84Updated 2 years ago
• alexander-hanel / unicorn-engine-notes
  Notes on using the Python bindings for the Unicorn Engine
  ☆80Updated 5 years ago
• SinaKarvandi / windbg2ida
  Windbg2ida lets you dump each step in Windbg then shows these steps in IDA
  ☆73Updated last year
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆179Updated last year