fkie-cad / RoAMerLinks
Robust Automated Malware Unpacker
☆84Updated 2 years ago
Alternatives and similar repositories for RoAMer
Users that are interested in RoAMer are comparing it to the libraries listed below
Sorting:
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆92Updated last week
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- ☆58Updated 4 years ago
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆249Updated 2 years ago
- Generating YARA rules based on binary code☆210Updated 3 years ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- Yet another rule generator for Yara☆29Updated 4 years ago
- An IDA Pro extension for easier (malware) reverse engineering☆114Updated 2 years ago
- ☆71Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆75Updated 10 years ago
- Analyses in IDA/Hex-Rays☆83Updated 2 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆41Updated 5 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆183Updated 4 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆234Updated last month
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- scripts/plugins for IDA Pro☆173Updated 4 months ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆119Updated 6 years ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 6 years ago
- ☆13Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- API Logger for Windows Executables☆78Updated 4 years ago
- Windows API tracer for malware (oldname: unitracer)☆118Updated 7 years ago
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago