geekscrapy / binGraphLinks
Simple tool to graph files for quick analysis
☆56Updated last year
Alternatives and similar repositories for binGraph
Users that are interested in binGraph are comparing it to the libraries listed below
Sorting:
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆67Updated 4 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆76Updated 10 years ago
- Toolset to analyze disks encrypted with McAFee FDE technology☆19Updated 4 years ago
- ☆84Updated 5 years ago
- Commandline utility to interact with the Malpedia service☆22Updated 5 years ago
- Client library for the mwdb service by CERT Polska.☆40Updated 3 weeks ago
- Symbol hash for ELF files☆112Updated 3 years ago
- Trigram database written in C++, suited for malware indexing☆126Updated 10 months ago
- Tools for inspecting YARA bytecode☆20Updated 5 years ago
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆162Updated 8 months ago
- MWDB exercises☆20Updated 7 months ago
- Parsing of YARA rules into AST and building new rulesets in C++.☆126Updated this week
- CLI tool to analyze PE files☆88Updated 11 months ago
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago
- A port of Kaitai to the Hiew hex editor☆151Updated 5 years ago
- ☆71Updated last year
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 6 years ago
- Capa analysis importer for Ghidra.☆62Updated 4 years ago
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆77Updated 3 years ago
- Whitelisting LD_PRELOAD libraries using LD_AUDIT☆63Updated 3 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆278Updated 8 months ago
- Fuzzy Hash calculated from import API of PE files☆90Updated 2 years ago
- Enable Microsoft PDB support in Ghidra without installing Visual Studio☆37Updated 6 years ago
- Windows link file (shortcuts) examiner☆68Updated last year
- ☆60Updated 4 years ago
- Various Yara signatures (possibly to be included in a release later).☆86Updated 6 years ago
- TA505 unpacker Python 2.7☆47Updated 5 years ago
- Various capabilities for static malware analysis.☆78Updated 11 months ago
- ☆29Updated 8 years ago
- ☆52Updated 6 years ago