hillu / yara-rules-reLinks
Tools for inspecting YARA bytecode
☆20Updated 5 years ago
Alternatives and similar repositories for yara-rules-re
Users that are interested in yara-rules-re are comparing it to the libraries listed below
Sorting:
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- TA505 unpacker Python 2.7☆47Updated 5 years ago
- The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…☆93Updated last month
- Capa analysis importer for Ghidra.☆62Updated 4 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- ☆71Updated last year
- Malware Configuration Extraction Modules☆51Updated last year
- Yet another rule generator for Yara☆29Updated last month
- Symbol hash for ELF files☆111Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- ☆23Updated 6 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- ☆52Updated 6 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- Ghidra plugin for https://analyze.intezer.com☆71Updated 2 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 6 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 4 years ago
- ☆59Updated 4 years ago
- Set of tools to analyze Tinynuke samples☆15Updated 3 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆116Updated 2 years ago
- Alternative YARA scanning engine☆72Updated 2 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 10 months ago
- CLI tool to analyze PE files☆87Updated 10 months ago
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- Yaras Random☆21Updated 6 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago