Windows API tracer for malware (oldname: unitracer)
☆120Oct 16, 2017Updated 8 years ago
Alternatives and similar repositories for tracecorn
Users that are interested in tracecorn are comparing it to the libraries listed below
Sorting:
- Unicorn PE function runner☆59Jul 4, 2017Updated 8 years ago
- Analysis PE file or Shellcode☆50Jul 28, 2016Updated 9 years ago
- Basic x86 Symbolic Execution for educational purposes☆18May 8, 2017Updated 8 years ago
- UNIPE - A small framwork to execute PE files with UniCorn☆47Jan 25, 2018Updated 8 years ago
- A plugin for x64dbg for x86 emulation powered by the Unicorn-engine.☆29Dec 9, 2015Updated 10 years ago
- ☆30May 23, 2017Updated 8 years ago
- ☆13Jul 11, 2017Updated 8 years ago
- Towards Generic Deobfuscation of Windows API Calls☆50May 21, 2019Updated 6 years ago
- modify binary Portable Executable to hook its export functions☆67Jan 13, 2019Updated 7 years ago
- This is a fuzzer for Windows SEH buffer overflow.☆15Oct 17, 2017Updated 8 years ago
- [Not work] Deobfuscate obfuscated binaries!☆11Dec 16, 2016Updated 9 years ago
- ☆99Jun 19, 2024Updated last year
- PyAna - Analyzing the Windows shellcode☆247Feb 16, 2016Updated 10 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆73Apr 14, 2017Updated 8 years ago
- An aggregate of tools used in the core of vmp_dbg plus other parsing utils to parse vmp bc.☆16Oct 18, 2016Updated 9 years ago
- scripts/plugins for IDA Pro☆178Jan 10, 2025Updated last year
- An API Monitor based on Instrumentation☆43Dec 19, 2017Updated 8 years ago
- ☆12Jun 14, 2017Updated 8 years ago
- reverse engineering extension plugin for windbg☆121Sep 30, 2019Updated 6 years ago
- Decompile an x86 exe, and read PE infos.☆19Sep 29, 2018Updated 7 years ago
- Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.☆164Apr 10, 2023Updated 2 years ago
- AMD64 PE Emulator in Python.☆85Nov 16, 2023Updated 2 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆57Jan 16, 2020Updated 6 years ago
- idaemu is an IDA Pro Plugin - use for emulating code in IDA Pro.☆578Jun 29, 2022Updated 3 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆32Apr 13, 2017Updated 8 years ago
- rebuild ollydbg☆20Feb 15, 2017Updated 9 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆119Dec 1, 2023Updated 2 years ago
- ☆14Jul 26, 2025Updated 7 months ago
- Code for my blog post on combining S2E and Kaitai Struct☆15Jun 1, 2019Updated 6 years ago
- Pafish4vs is based on [Pafish]( https://github.com/a0rtega/pafish) , just ported to the VS (VC) compiler (X64 , X86) .☆12Aug 19, 2016Updated 9 years ago
- ソーマ・カーネル・プロジェクト☆10Apr 12, 2017Updated 8 years ago
- ☆11Mar 11, 2015Updated 10 years ago
- simple PE parser☆12Mar 14, 2017Updated 8 years ago
- collection of scripts and stuff☆12Aug 15, 2016Updated 9 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆27May 21, 2014Updated 11 years ago
- CVE-2017-4878 Samples - http://blog.talosintelligence.com/2018/02/group-123-goes-wild.html☆18Feb 5, 2018Updated 8 years ago
- This is a plugin for OllyDbg 1.10 to replace the old disasm engine by Capstone disassembly/disassembler framework.☆79Feb 4, 2015Updated 11 years ago
- Window Executable file Function tracer using Debugging API☆44Sep 26, 2019Updated 6 years ago