fr0gger / unprotectLinks
Unprotect is a python tool for parsing PE malware and extract evasion techniques.
☆116Updated 2 years ago
Alternatives and similar repositories for unprotect
Users that are interested in unprotect are comparing it to the libraries listed below
Sorting:
- Capa analysis importer for Ghidra.☆62Updated 4 years ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆130Updated last year
- Malware Configuration Extraction Modules☆51Updated last year
- A golang CLI tool to download malware from a variety of sources.☆148Updated last month
- TA505 unpacker Python 2.7☆47Updated 5 years ago
- Malware similarity platform with modularity in mind.☆78Updated 4 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Various capabilities for static malware analysis.☆78Updated 11 months ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆139Updated 2 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Updated 3 years ago
- Unpacking and decryption tools for the Emotet malware☆45Updated 3 years ago
- Userland API monitor for threat hunting☆58Updated 5 years ago
- ☆106Updated last year
- VirusTotal Intelligence Search☆38Updated 5 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 2 months ago
- Standardized Malware Analysis Tool☆53Updated 4 years ago
- Tools for assisting the reverse engineering of Qakbot☆11Updated 4 years ago
- ☆83Updated 5 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- CLI tool to analyze PE files☆87Updated 10 months ago
- Documentation and parsers for different anti-virus quarantine formats.☆42Updated 4 years ago
- An advanced memory forensics framework☆96Updated 5 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 10 months ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆82Updated 11 months ago
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆181Updated 3 weeks ago