fr0gger / unprotectLinks
Unprotect is a python tool for parsing PE malware and extract evasion techniques.
☆114Updated 2 years ago
Alternatives and similar repositories for unprotect
Users that are interested in unprotect are comparing it to the libraries listed below
Sorting:
- API Logger for Windows Executables☆78Updated 4 years ago
- Malware Configuration Extraction Modules☆50Updated last year
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- Random hunting ordiented yara rules☆96Updated 2 years ago
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆101Updated last month
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago
- Powershell script deobfuscation using AST in Python☆66Updated last year
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆128Updated last year
- A golang CLI tool to download malware from a variety of sources.☆146Updated last year
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- JPCERT/CC public YARA rules repository☆106Updated 5 months ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆108Updated 4 years ago
- Userland API monitor for threat hunting☆58Updated 5 years ago
- Robust Automated Malware Unpacker☆84Updated 2 years ago
- ☆104Updated last year
- Documentation and supporting script sample for Windows Exploit Guard☆156Updated 3 years ago
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- Use YARA rules on Time Travel Debugging traces☆90Updated last year
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …☆31Updated 4 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Various capabilities for static malware analysis.☆78Updated 9 months ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- Valhalla API Client☆70Updated 2 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Generating YARA rules based on binary code☆210Updated 3 years ago