hiddenillusion / AnalyzePE
Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
☆204Updated 10 years ago
Related projects ⓘ
Alternatives and complementary repositories for AnalyzePE
- Automatic Yara Rule Generation☆332Updated 8 years ago
- snake - a malware storage zoo☆217Updated last year
- Automated malware unpacker☆118Updated 8 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆193Updated 7 years ago
- Smart DLL execution for malware analysis in sandbox systems☆141Updated 9 years ago
- Set of tools for interacting with Malshare☆154Updated 4 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆263Updated 3 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 4 years ago
- A Yara rule generator for finding related samples and hunting☆157Updated 2 years ago
- Repository of modules and signatures contributed by the community☆324Updated last year
- Generating YARA rules based on binary code☆203Updated 3 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆131Updated 2 years ago
- A tool to detect and crash Cuckoo Sandbox☆288Updated 3 months ago
- ☆200Updated last year
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 5 years ago
- ☆134Updated 5 years ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆611Updated 2 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆278Updated 7 years ago
- Python bindings for ssdeep☆91Updated 2 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆255Updated 5 years ago
- Modified edition of cuckoo☆271Updated 5 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆218Updated 4 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆115Updated 5 months ago
- Web interface for the Volatility Memory Forensics Framework☆259Updated 7 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆148Updated 7 years ago
- A Tool for Automatic Analysis of Malware Behavior☆368Updated 5 years ago
- BASS - BASS Automated Signature Synthesizer☆173Updated 6 years ago