hasherezade / mal_unpack_pyLinks
Python wrappers for mal_unpack
☆36Updated last year
Alternatives and similar repositories for mal_unpack_py
Users that are interested in mal_unpack_py are comparing it to the libraries listed below
Sorting:
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- General malware analysis stuff☆37Updated 9 months ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- ☆27Updated 6 months ago
- Collection of my own detection rules☆20Updated last year
- Lazarus analysis tools and research report☆56Updated last year
- Reverse Engineering and Debugging Malware☆32Updated 2 years ago
- ☆34Updated 2 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated 2 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 2 years ago
- Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk☆45Updated 3 years ago
- C# Desktop GUI application that either performs YARA scan locally or prepares the scan in Active Directory domain environment with a few …☆34Updated 3 years ago
- Reads and prints information from the website MalAPI.io☆19Updated 2 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 3 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.☆25Updated 3 years ago
- A collection of my yara rules☆34Updated last year
- ☆33Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Updated 2 years ago
- My Malware Analysis Reports☆20Updated 3 years ago
- ☆22Updated 8 months ago
- Specialized tool to dump Position Independent Code.☆22Updated 4 years ago
- Repo containing my public talks☆23Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Golang bindings for PE-sieve☆43Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆56Updated 3 weeks ago
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago