google / vxsigLinks
Automatically generate AV byte signatures from sets of similar binaries.
☆273Updated 5 months ago
Alternatives and similar repositories for vxsig
Users that are interested in vxsig are comparing it to the libraries listed below
Sorting:
- Generating YARA rules based on binary code☆210Updated 3 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆249Updated 2 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆92Updated last week
- scripts/plugins for IDA Pro☆173Updated 4 months ago
- Parsing of YARA rules into AST and building new rulesets in C++.☆124Updated 2 weeks ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆234Updated last month
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- Robust Automated Malware Unpacker☆84Updated 2 years ago
- ☆225Updated 2 years ago
- capemon: CAPE's monitor☆118Updated last week
- grap: define and match graph patterns within binaries☆154Updated 3 years ago
- Trigram database written in C++, suited for malware indexing☆125Updated 7 months ago
- FLARE Kernel Shellcode Loader☆178Updated 6 years ago
- ☆115Updated 8 years ago
- CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- p…☆129Updated last month
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Binee: binary emulation environment☆520Updated 2 years ago
- Windows API tracer for malware (oldname: unitracer)☆118Updated 7 years ago
- Hyper-V Research is trendy now☆180Updated last year
- Symbol hash for ELF files☆111Updated 3 years ago
- idahunt is a framework to analyze binaries with IDA Pro and hunt for things in IDA Pro☆386Updated last year
- Script analysis tool based on Frida.re☆127Updated 8 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆183Updated 4 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆119Updated 6 years ago
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆234Updated 7 months ago
- Tools for instrumenting Windows Defender's mpengine.dll☆298Updated 6 years ago
- SAFE embeddings to match functions in yara☆100Updated 5 years ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- Control-flow-flattening and string deobfuscator☆152Updated 3 years ago