The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.
☆65Apr 15, 2024Updated last year
Alternatives and similar repositories for frida-jit-unpacker
Users that are interested in frida-jit-unpacker are comparing it to the libraries listed below
Sorting:
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆35Oct 31, 2023Updated 2 years ago
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Jun 3, 2024Updated last year
- ☆32Jun 1, 2024Updated last year
- JITK - JIT Killer is hooker for clrjit☆30Jan 3, 2023Updated 3 years ago
- A mechanism that trampoline hooks functions in x86/x64 systems.☆21Oct 9, 2024Updated last year
- DelphiHelper is a python IDA Pro plugin aiming to help the analysis of x86/x86_64 binaries written in Delphi programming language.☆138Feb 9, 2026Updated last month
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆83Jan 12, 2023Updated 3 years ago
- IDA Pro plugin to aid with the analysis of native IIS modules☆21Aug 1, 2024Updated last year
- A utility that can be used to launch an executable with a DLL injected☆19Nov 20, 2023Updated 2 years ago
- This IDA plugin extends the functionality of the assembly and hex view. With this plugin, you can conveniently decode/decrypt/alter data …☆87May 31, 2025Updated 9 months ago
- Select any exported function in a dll as the new dll's entry point.☆81Oct 25, 2024Updated last year
- Creation and removal of Defender path exclusions and exceptions in C#.☆32Nov 1, 2023Updated 2 years ago
- Tool that automates some useful structure routines in IDA PRO☆83Mar 20, 2024Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆35Mar 28, 2023Updated 2 years ago
- Yet Another Memory Analyzer for malware detection☆24Aug 4, 2023Updated 2 years ago
- Go fastcall analysis for ida decompiler☆46Jun 25, 2025Updated 8 months ago
- ☆27Jan 17, 2026Updated last month
- Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.☆29Apr 3, 2025Updated 11 months ago
- Tools for analyzing EDR agents☆278Jun 10, 2024Updated last year
- ☆83Nov 1, 2023Updated 2 years ago
- ☆101Oct 7, 2023Updated 2 years ago
- ☆181Apr 24, 2025Updated 10 months ago
- A python library for generate ida pro files (*.idb/*.i64) in batch mode & compare executable files use bindiff in batch mode.☆32Jul 9, 2025Updated 8 months ago
- A dynamic unpacking tool☆148Sep 17, 2023Updated 2 years ago
- a component of red teaming for generate route map.☆11Aug 30, 2024Updated last year
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Apr 7, 2024Updated last year
- 用于若依和Jeecg数据库中密码的爆破☆23Jul 19, 2025Updated 7 months ago
- EDR PoC WIP LLC☆10Feb 9, 2024Updated 2 years ago
- 检测邮件发送的可行性,可用来红队作战中对目标邮箱账户测试。The feasibility sent by the detection mail can be used for the target mailbox account test in the Red Team b…☆10May 8, 2023Updated 2 years ago
- Custom nuclei templates for bug hunting.....☆26May 30, 2024Updated last year
- Proof of Concept Exploit for CVE-2024-9465☆30Oct 9, 2024Updated last year
- ☆27Sep 13, 2023Updated 2 years ago
- [WIP] Dekompiler is .NET decompiler that converts Cil to C# code.☆30Jun 1, 2024Updated last year
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆163Aug 23, 2024Updated last year
- ☆23May 23, 2024Updated last year
- A variation of ProcessOverwriting to execute shellcode on an executable's section☆148Dec 16, 2023Updated 2 years ago
- A Proof-of-Concept implementation for Proxy Object Obfuscation in .NET☆48Jan 8, 2023Updated 3 years ago