intezer / ELF-Malware-Analysis-101View external linksLinks
This repository contains relevant samples and data related to the ELF Malware Analysis 101 articles
☆48Jun 21, 2022Updated 3 years ago
Alternatives and similar repositories for ELF-Malware-Analysis-101
Users that are interested in ELF-Malware-Analysis-101 are comparing it to the libraries listed below
Sorting:
- Personal notes and lab results pertaining to the text "Practical Malware Analysis" by Michael Sikorski and Andrew Honiq.☆12Oct 28, 2017Updated 8 years ago
- This repo contain Android malware samples and analysis☆13Apr 3, 2021Updated 4 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Jun 5, 2023Updated 2 years ago
- This repo contains miscellaneous tools to aid in your malware analysis.☆13Mar 2, 2021Updated 4 years ago
- open source malware analysis and research notes dump☆26Aug 30, 2023Updated 2 years ago
- An implementation of the paper "ELF-Miner: Using Structural Knowledge and Data Mining Methods To Detect New (Linux) Malicious Executables…☆15Dec 21, 2018Updated 7 years ago
- qiling framework examples☆16Jan 17, 2022Updated 4 years ago
- malware analysis scripts for Ghidra☆83Aug 7, 2023Updated 2 years ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Aug 17, 2019Updated 6 years ago
- Code for my blog post on using S2E for malware analysis☆25Jul 16, 2019Updated 6 years ago
- ☆22Jul 7, 2023Updated 2 years ago
- Malware development: persistence - part 1: startup folder registry keys. C++ implementation☆12Apr 21, 2022Updated 3 years ago
- Mimikatz embedded as classes☆28Oct 25, 2021Updated 4 years ago
- Here are some tools I developed to help analyze malware☆12Nov 8, 2023Updated 2 years ago
- A taxonomy and dictionary of malware behaviors.☆43Aug 20, 2019Updated 6 years ago
- ☆11Aug 3, 2018Updated 7 years ago
- Work in Progress repo☆15Apr 18, 2019Updated 6 years ago
- A collection of my public YARA signatures for various malware families☆30Sep 20, 2024Updated last year
- ☆11Feb 14, 2025Updated last year
- misc scripts/utils that I've written that aren't deserving of own repos.☆14Aug 18, 2021Updated 4 years ago
- Binary, Analysis, and Disassembler Radare2 Plugins for Dan32 architechture binaries☆18Aug 21, 2017Updated 8 years ago
- A modified fork of Be.HexEditor for use in debug tools☆14Jan 5, 2022Updated 4 years ago
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- Scripts targeting specific families☆13Jul 3, 2017Updated 8 years ago
- Tools for macOS Forensic Bootable media☆15May 20, 2020Updated 5 years ago
- Ghidra RE scripts☆38Feb 5, 2021Updated 5 years ago
- Subdomain Enumeration Tool☆12Jan 16, 2021Updated 5 years ago
- ☆16Sep 12, 2021Updated 4 years ago
- My manual analysis of malware families☆13Jul 12, 2017Updated 8 years ago
- ☆16Dec 21, 2023Updated 2 years ago
- Yara rules written by me, for free use.☆20Nov 26, 2021Updated 4 years ago
- Windows 10 Live Information viewer☆37Jan 27, 2022Updated 4 years ago
- very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake☆14Aug 23, 2022Updated 3 years ago
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Volatility Symbol Generator for Linux Kernels☆37Nov 15, 2023Updated 2 years ago
- Sources code extracted from malwares for analysis☆41Mar 10, 2023Updated 2 years ago
- ☆15Feb 22, 2021Updated 4 years ago
- ☆19Jul 29, 2022Updated 3 years ago
- Discover potential timestamps within the Windows Registry☆19Apr 22, 2014Updated 11 years ago