halsten / Duqu-detectorsLinks
Scripts for detecting Duqu drivers and other elements
☆20Updated 13 years ago
Alternatives and similar repositories for Duqu-detectors
Users that are interested in Duqu-detectors are comparing it to the libraries listed below
Sorting:
- LPE exploits for Secret Net and Secret Net Studio☆51Updated 9 years ago
- ☆32Updated last year
- Slides from presentations done by ESET researchers☆20Updated 9 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Tool to check if your computer is likely to be vulnerable to exploitable constant Read-Write-Execute (RWX) addresses (AVs vulnerability)☆52Updated 9 years ago
- Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis☆66Updated 10 years ago
- IDA Pomidor is a plugin for Hex-Ray's IDA Pro disassembler that will help you retain concentration and productivity during long reversing…☆35Updated 10 years ago
- Ambush Host Intrusion Prevention System☆65Updated 12 years ago
- Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"☆41Updated 9 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- Exploit kit analyzer☆22Updated 10 years ago
- Collection of IDA Pro plugins I wrote over the years☆23Updated 15 years ago
- Exporters for OllyDbg and ImmunityDbg for use with zynamics BinNavi <= 3.0☆17Updated 13 years ago
- Set of python scripts to analyse PE32/PE64 binaries and to extract VB 5/6 headers and Visual Basic p-code functions.☆48Updated 10 years ago
- Yet another Python library to read and write PE/PE+ files.☆78Updated 8 years ago
- Source codes for "The Antivirus Hackers Handbook" book.☆60Updated 10 years ago
- RPCSniffer sniffs WINDOWS RPC messages in a given RPC server process.☆65Updated 11 years ago
- ☆46Updated 8 years ago
- Script to parse first load time for Shell Extensions loaded by user. Also enumerates all loaded Shell Extensions that are only installed …☆21Updated 10 years ago
- A PoC implementation of the meltdown attack described in https://meltdownattack.com/meltdown.pdf☆134Updated 7 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Updated 8 years ago
- Imports MSDN documentation into IDA Pro☆51Updated 13 years ago
- Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation☆40Updated 8 years ago
- Binary Analysis Platform☆74Updated 11 years ago
- python inspect rootkit tool☆33Updated 11 years ago
- The educational Animus malware☆18Updated 5 years ago
- ☆109Updated 8 years ago
- Carves EXEs from given data files, using intelligent carving based upon PE headers☆39Updated 8 years ago
- a collection of yara rules for binary analysis☆24Updated 8 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆37Updated 9 years ago