intezer / MemoryPatchDetector
Detects code differentials between executables in disk and the corresponding processes/modules in memory
☆113Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for MemoryPatchDetector
- Bit9 + Carbon Black Threat Intelligence☆81Updated 8 years ago
- An environment for comprehensive, automated analysis of web-based exploits, based on Cuckoo sandbox.☆125Updated 9 years ago
- Malware Analysis Tool using Function Level Fuzzy Hashing☆191Updated 8 years ago
- Simple shellcode decoder using unicorn-engine☆98Updated 9 years ago
- Scripts for dealing with various ek's☆69Updated 7 years ago
- Small tool for disassembling shellcode (using objdump)☆146Updated 2 years ago
- ☆110Updated 7 years ago
- hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols☆170Updated 6 years ago
- Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code☆50Updated 8 years ago
- Rapid deployment of Windows environment (files, registry keys, mutex etc) to facilitate malware analysis☆40Updated 9 years ago
- IDATACO IDA Pro Plugin☆47Updated 8 years ago
- Parse Yara rules and operate over them more easily.☆52Updated 5 years ago
- ☆45Updated 7 years ago
- ☆46Updated 7 years ago
- Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis☆66Updated 9 years ago
- ☆74Updated 2 years ago
- Scalable Binary Data Extraction in Hadoop☆143Updated 10 years ago
- map file generator for intel x86 binary based on flirt signature☆83Updated 8 years ago
- Cryptowall Tooling & Information☆34Updated 8 years ago
- tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net☆32Updated 8 months ago
- Automated memory forensics analysis☆32Updated 5 years ago
- ☆75Updated 7 years ago
- ActionScript3 dynamic instrumentation tool☆36Updated 7 years ago
- Basic command line, text-based, shellcode debugger.☆91Updated 7 years ago