Unprotect is a python tool for parsing PE malware and extract evasion techniques.
☆122May 22, 2023Updated 3 years ago
Alternatives and similar repositories for unprotect
Users that are interested in unprotect are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14May 31, 2020Updated 5 years ago
- ☆16Dec 16, 2020Updated 5 years ago
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 3 years ago
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆12Dec 8, 2020Updated 5 years ago
- Malware analysis tool based on taint analysis.☆14Jan 29, 2022Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Emulating Virtual Environment to stay protected against advanced malware☆101Jan 28, 2019Updated 7 years ago
- A loadable dll that tracks memory changes, IAT hooks, and dynamically emplaced "JMP" in the x86 host executable.☆12Oct 22, 2023Updated 2 years ago
- Malware similarity platform with modularity in mind.☆80Jul 18, 2021Updated 4 years ago
- ☆15Nov 25, 2021Updated 4 years ago
- ☆10Oct 22, 2017Updated 8 years ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- AppXSVC Service race condition - privilege escalation☆29Jul 30, 2019Updated 6 years ago
- This project is created for research into antivirus evasion by unhooking.☆18Sep 2, 2021Updated 4 years ago
- Malware Sandbox Emulation in Python @ HITCON 2018☆46Aug 1, 2018Updated 7 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Import specific data sources into the Sigma generic and open signature format.☆79May 6, 2022Updated 4 years ago
- A taxonomy and dictionary of malware behaviors.☆43Aug 20, 2019Updated 6 years ago
- ☆37Dec 17, 2020Updated 5 years ago
- Former UEFI Firmware Rootkit Replicating MoonBounce / ESPECTRE☆11Jun 14, 2022Updated 3 years ago
- analysis of visual basic code☆47Mar 25, 2018Updated 8 years ago
- Dynamic Taint Analysis versus Obfuscated Self-Checking☆16Sep 5, 2021Updated 4 years ago
- Automatic DLL comment link generation and explaination of the DLL Proxying techniques☆10Aug 19, 2021Updated 4 years ago
- YARA malware query accelerator (web frontend)☆439Feb 3, 2026Updated 3 months ago
- x64 assembler library☆31Jun 7, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆23Dec 15, 2022Updated 3 years ago
- virustotal API-based project for checking the list of hashes against virustotal.com database☆11Feb 26, 2018Updated 8 years ago
- Presentation Slides and Video links☆32Nov 8, 2021Updated 4 years ago
- C++ Privilege Escalation Class to execute Process As Admin from User and Process as NT AUTHORITY SYSTEM from Admin☆23Aug 21, 2023Updated 2 years ago
- Binee: binary emulation environment☆531Feb 25, 2023Updated 3 years ago
- Trigram database written in C++, suited for malware indexing☆130Jan 26, 2026Updated 3 months ago
- Reflective PE loader for DLL injection☆186Oct 12, 2017Updated 8 years ago
- Windows Local Privilege Escalation - 0 Day Vulnerability (schtasks.exe) released by @SandboxEscaper :)☆19May 22, 2019Updated 7 years ago
- Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.☆197Aug 3, 2025Updated 9 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- PoC designed to evade userland-hooking anti-virus.☆90May 15, 2019Updated 7 years ago
- An open source virus scan aggregation framework.☆25Apr 25, 2014Updated 12 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆128Dec 3, 2022Updated 3 years ago
- Ursnif beacon decryptor☆27Mar 20, 2023Updated 3 years ago
- ☆18Apr 4, 2019Updated 7 years ago
- NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.☆12Oct 23, 2015Updated 10 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆45Dec 21, 2023Updated 2 years ago