fkie-cad / RoAMerLinks
Robust Automated Malware Unpacker
☆85Updated 2 years ago
Alternatives and similar repositories for RoAMer
Users that are interested in RoAMer are comparing it to the libraries listed below
Sorting:
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- IDA python plugin to scan binary with Yara rules☆177Updated last year
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆93Updated last week
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Capa analysis importer for Ghidra.☆62Updated 4 years ago
- ☆71Updated last year
- Automatically generate AV byte signatures from sets of similar binaries.☆277Updated 7 months ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆253Updated 2 years ago
- Generating YARA rules based on binary code☆213Updated 3 years ago
- Yet another rule generator for Yara☆29Updated 2 months ago
- Official VirusTotal plugin for IDA Pro☆158Updated last year
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆237Updated 9 months ago
- Tools for inspecting YARA bytecode☆20Updated 5 years ago
- ☆60Updated 4 years ago
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- Symbol hash for ELF files☆112Updated 3 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Port of the binary diffing library, diaphora, for radare2 and mariadb☆50Updated last year
- Malware dynamic instrumentation tool based on frida framework☆108Updated 5 years ago
- Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.☆81Updated 4 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆239Updated last week
- API Logger for Windows Executables☆78Updated 4 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆116Updated 2 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆120Updated 6 years ago
- LERN GHIDRA☆91Updated 2 years ago