Parsers for custom malware formats ("Funky malware formats")
☆98Jan 8, 2022Updated 4 years ago
Alternatives and similar repositories for funky_malware_formats
Users that are interested in funky_malware_formats are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A wrapper for capstone for bearparser☆16Oct 8, 2025Updated 6 months ago
- A template for projects using both libPeConv and MS Detours☆16Oct 5, 2025Updated 6 months ago
- Parser for a custom executable formats from Hidden Bee and Rhadamanthys malware☆59Aug 6, 2025Updated 8 months ago
- My solutions for HackSys Extreme Vulnerable Driver☆12Apr 22, 2018Updated 7 years ago
- A set of small utilities, helpers for PIN tracers☆38Feb 15, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- My solutions for random crackmes and other challenges☆12Dec 23, 2019Updated 6 years ago
- A ready-made template for a project based on libpeconv.☆52Mar 28, 2026Updated 2 weeks ago
- Flare-On solutions☆37Oct 11, 2019Updated 6 years ago
- A small library helping to parse commandline parameters (for C/C++)☆57Apr 7, 2026Updated last week
- Demos of various (also non standard) persistence methods used by malware☆225Mar 5, 2023Updated 3 years ago
- ☆23Feb 3, 2021Updated 5 years ago
- Dynamic unpacker based on PE-sieve☆804Apr 1, 2026Updated last week
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- Set of antianalysis techniques found in malware☆132Aug 25, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- My small projects writen in 16 bit asm (NOTE: those are my practice projects that I wrote when I was 15, I give no warranty for this code…☆23Oct 14, 2021Updated 4 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆63Aug 21, 2024Updated last year
- Archive of ransomware decryptors☆34Dec 7, 2017Updated 8 years ago
- A helper utility for creating shellcodes. Cleans MASM file generated by MSVC, gives refactoring hints.☆188Apr 22, 2025Updated 11 months ago
- Designed to learn OS specific anti-emulation patterns by fuzzing the Windows API.☆99Jul 7, 2020Updated 5 years ago
- Windows syscall fuzzer that I used in 2017 & 2018. Not much to say about it but maybe helpful to someone. At least syscall information it…☆20Nov 20, 2019Updated 6 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆45Sep 16, 2017Updated 8 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆22Apr 13, 2018Updated 8 years ago
- ☆23May 28, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- ☆36Oct 27, 2019Updated 6 years ago
- ☆76Nov 30, 2023Updated 2 years ago
- MalUnpack companion driver☆98Jun 17, 2024Updated last year
- A CMake template for projects using MS Detours☆23Feb 18, 2025Updated last year
- Windows x64 Process Scanner to detect application compatability shims☆37Oct 17, 2018Updated 7 years ago
- Set of my small utils related to cryptography, encoding, decoding etc☆95Sep 1, 2025Updated 7 months ago
- Data from analysis of the custom sample from the chapter "Practical Analysis and Test"☆12Aug 1, 2020Updated 5 years ago
- Various scripts for different malware families☆106Apr 12, 2021Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ViDi Visual Disassembler (experimental)☆80Oct 8, 2025Updated 6 months ago
- Converts a DLL into EXE☆815Jul 23, 2023Updated 2 years ago
- Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging☆581Mar 8, 2024Updated 2 years ago
- Various shellcodes☆12Sep 1, 2020Updated 5 years ago
- My manual analysis of malware families☆13Jul 12, 2017Updated 8 years ago
- Various snippets created during malware analysis☆466Oct 3, 2025Updated 6 months ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆230Mar 22, 2023Updated 3 years ago