icchy / tracecorn
Windows API tracer for malware (oldname: unitracer)
☆117Updated 7 years ago
Alternatives and similar repositories for tracecorn:
Users that are interested in tracecorn are comparing it to the libraries listed below
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆90Updated 5 years ago
- ☆100Updated 10 months ago
- ☆99Updated 10 months ago
- grap: define and match graph patterns within binaries☆154Updated 3 years ago
- Static unpacker for FinSpy VM☆100Updated 3 years ago
- Toolkit for enriching and speeding up static malware analysis☆168Updated 3 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆85Updated 2 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 9 years ago
- ☆115Updated 8 years ago
- PEDA-like debugger UI for WinDbg☆203Updated last year
- VMI-Unpack - A Virtual Machine Introspection (VMI) based generic unpacker.☆55Updated 5 years ago
- scripts/plugins for IDA Pro☆173Updated 3 months ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆122Updated 4 years ago
- Automatically rebuild Import Address Table for dumped PE file. With python bindings!☆118Updated 6 years ago
- IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…☆140Updated 4 years ago
- IDA python plugin to scan binary with Yara rules☆172Updated last year
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆182Updated 4 years ago
- IDA Plugin which decodes Windows Device I/O control code into DeviceType, FunctionCode, AccessType and MethodType.☆108Updated last year
- [ARCHIVED] mov rax, ${Thalium/IceBox}; jmp rax;☆73Updated 5 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Updated 2 years ago
- grap: define and match graph patterns within binaries☆171Updated 4 years ago
- This IDAPython script tags subroutines according to their use of imported functions☆73Updated 3 years ago
- IDA Pro resources, scripts, and configurations☆111Updated last year
- Analyses in IDA/Hex-Rays☆81Updated 2 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆71Updated 8 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- ☆51Updated 6 years ago
- ☆91Updated 8 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆231Updated 3 weeks ago
- ☆89Updated 5 years ago