fr0gger / unprotect

Related projects ⓘ

Alternatives and complementary repositories for unprotect

• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆47Updated last year
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆89Updated 3 years ago
• pan-unit42 / dotnetfile
  ☆100Updated last year
• y3n11 / Captain
  Userland API monitor for threat hunting
  ☆55Updated 4 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 3 weeks ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆89Updated 3 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆49Updated 7 months ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆156Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆124Updated last year
• edygert / runsc
  runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…
  ☆36Updated last year
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆126Updated last year
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆141Updated 9 months ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆131Updated 2 years ago
• Karneades / malware-persistence
  Collection of malware persistence and hunting information. Be a persistent persistence hunter!
  ☆165Updated 2 months ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆77Updated 4 years ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆86Updated last week
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• thewhiteninja / deobshell
  Powershell script deobfuscation using AST in Python
  ☆62Updated 10 months ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆92Updated this week
• silence-is-best / c2db
  c2 traffic
  ☆187Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆104Updated 5 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated 7 months ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated last year