fkie-cad / RoAMerLinks
Robust Automated Malware Unpacker
☆85Updated 2 years ago
Alternatives and similar repositories for RoAMer
Users that are interested in RoAMer are comparing it to the libraries listed below
Sorting:
- An IDA Pro extension for easier (malware) reverse engineering☆115Updated 3 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆282Updated 10 months ago
- IDA python plugin to scan binary with Yara rules☆179Updated last year
- Parsers for custom malware formats ("Funky malware formats")☆97Updated 3 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆94Updated last week
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆259Updated 2 years ago
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆240Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Capa analysis importer for Ghidra.☆63Updated 4 years ago
- ☆72Updated 2 years ago
- Generating YARA rules based on binary code☆216Updated 4 years ago
- Port of the binary diffing library, diaphora, for radare2 and mariadb☆52Updated 2 years ago
- Symbol hash for ELF files☆111Updated 3 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 5 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆248Updated this week
- Official VirusTotal plugin for IDA Pro☆173Updated this week
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- Yet another rule generator for Yara☆29Updated 4 months ago
- ☆60Updated 4 years ago
- A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in exec…☆98Updated last year
- Analyses in IDA/Hex-Rays☆84Updated 2 years ago
- Malware dynamic instrumentation tool based on frida framework☆110Updated 5 years ago
- Ghidra plugin for https://analyze.intezer.com☆72Updated 3 years ago
- ☆106Updated 6 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- LERN GHIDRA☆92Updated 2 months ago
- Parsing of YARA rules into AST and building new rulesets in C++.☆128Updated last month
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Set of antianalysis techniques found in malware☆131Updated 2 years ago