iij / idapython-cheatsheet

Related projects ⓘ

Alternatives and complementary repositories for idapython-cheatsheet

• Bigdrea6 / winapi-ghidra
  Make the Windows API in Ghidra easy to read and informative.
  ☆25Updated 2 years ago
• n01e0 / pRETzel_logic
  LLVM-based ROP obfuscated compiler
  ☆13Updated 2 years ago
• AllsafeCyberSecurity / malware-analysis-at-scale-defeating-emotet-by-ghidra
  Ghidra Script for automated analysis of EMOTET
  ☆17Updated 3 years ago
• shuakabane / stelftools
  cross-architecture static library detector for IoT malware
  ☆33Updated last year
• LAC-Japan / Ghidra_AntiDebugSeeker
  Automatically identify and extract potential anti-debugging techniques used by malware.
  ☆13Updated this week
• sophoslabs / emotet_unflatten_poc
  Modified python version of Rolf Rolles' https://github.com/RolfRolles/HexRaysDeob to unflatten Emotet'S Control Flow Flattening
  ☆26Updated 2 years ago
• tandasat / UEFI-BIOS-Security
  Security Camp 2021 & GCC 2022
  ☆112Updated 2 years ago
• n1ght-w0lf / QilingForMalwareAnalysis
  Code snippets for Qiling Tutorials
  ☆20Updated 4 years ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆51Updated 3 years ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆11Updated this week
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 2 years ago
• OALabs / UnpacMe-IDA-Byte-Search
  UnpacMe IDA Byte Search
  ☆26Updated last year
• mrphrazer / hitb2021ams_deobfuscation
  ☆71Updated 3 years ago
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆48Updated 3 weeks ago
• LLVMParty / RemillWorkshop
  ☆43Updated 2 months ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated last year
• binarly-io / idapcode
  IDA plugin displaying the P-Code for the current function
  ☆64Updated last year
• mrphrazer / ghidra_scripts
  Ghidra RE scripts
  ☆38Updated 3 years ago
• govcert-ch / ConfuserEx_IDAPython
  IDA Python deobfuscation script for ConfuserEx binaries
  ☆35Updated 2 years ago
• eset / wslink-vm-analyzer
  WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware
  ☆45Updated 2 years ago
• cxiao / ida-rust-untangler
  An IDA plugin which demangles Rust function names
  ☆31Updated 11 months ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆62Updated 7 months ago
• OALabs / hexcopy-ida
  IDA plugin for quickly copying disassembly as encoded hex bytes
  ☆59Updated 2 years ago
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆25Updated 4 years ago
• idiom / stackstack
  ☆31Updated 2 years ago
• hugsy / recon_2024_windbg_workshop
  ☆71Updated 4 months ago
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆101Updated 4 years ago
• n1ght-w0lf / pe-unmapper
  A small tool to unmap PE memory dumps.
  ☆11Updated last year
• patois / hexrays_scripts
  Various scripts for the Hexrays decompiler
  ☆93Updated last year
• harelon / GoFastAnalyzer
  Go fastcall analysis for ida decompiler
  ☆28Updated 6 months ago