fr0gger / unprotectLinks
Unprotect is a python tool for parsing PE malware and extract evasion techniques.
☆116Updated 2 years ago
Alternatives and similar repositories for unprotect
Users that are interested in unprotect are comparing it to the libraries listed below
Sorting:
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆128Updated last year
- A golang CLI tool to download malware from a variety of sources.☆146Updated this week
- Malware Configuration Extraction Modules☆50Updated last year
- ☆106Updated last year
- API Logger for Windows Executables☆78Updated 4 years ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆109Updated 4 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- c2 traffic☆189Updated 2 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆137Updated 2 years ago
- Use YARA rules on Time Travel Debugging traces☆91Updated last year
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- Community modules for CAPE Sandbox☆100Updated last week
- JPCERT/CC public YARA rules repository☆109Updated 6 months ago
- Various capabilities for static malware analysis.☆78Updated 9 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- MAEC Schemas and Schema Development☆87Updated 5 years ago
- ☆27Updated 3 years ago
- Unpacking and decryption tools for the Emotet malware☆47Updated 3 years ago
- ☆62Updated 11 months ago
- Userland API monitor for threat hunting☆58Updated 5 years ago