google / vxsigLinks
Automatically generate AV byte signatures from sets of similar binaries.
☆279Updated 9 months ago
Alternatives and similar repositories for vxsig
Users that are interested in vxsig are comparing it to the libraries listed below
Sorting:
- Parsing of YARA rules into AST and building new rulesets in C++.☆127Updated last week
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆255Updated 2 years ago
- Generating YARA rules based on binary code☆215Updated 3 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆244Updated last month
- IDA python plugin to scan binary with Yara rules☆178Updated last year
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆94Updated last week
- Symbol hash for ELF files☆112Updated 3 years ago
- pyGoRE - Python library for analyzing Go binaries☆65Updated 3 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- Trigram database written in C++, suited for malware indexing☆126Updated 11 months ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 4 years ago
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆238Updated 11 months ago
- An IDA Pro extension for easier (malware) reverse engineering☆114Updated 3 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆121Updated 6 years ago
- grap: define and match graph patterns within binaries☆154Updated 3 years ago
- Official VirusTotal plugin for IDA Pro☆170Updated last week
- ☆52Updated 7 years ago
- ☆115Updated 9 years ago
- ☆60Updated 4 years ago
- Windows API tracer for malware (oldname: unitracer)☆119Updated 7 years ago
- capemon: CAPE's monitor☆126Updated this week
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- ☆99Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- ☆226Updated 2 years ago
- Toolkit for enriching and speeding up static malware analysis☆168Updated 3 years ago
- Script analysis tool based on Frida.re☆129Updated 8 years ago
- A collection of well labeled ELF binaries compiled from benign and malicious code in various ways. Great for exploring similarity in exec…☆97Updated last year