intezer / MemoryPatchDetectorLinks
Detects code differentials between executables in disk and the corresponding processes/modules in memory
☆115Updated 4 years ago
Alternatives and similar repositories for MemoryPatchDetector
Users that are interested in MemoryPatchDetector are comparing it to the libraries listed below
Sorting:
- An environment for comprehensive, automated analysis of web-based exploits, based on Cuckoo sandbox.☆125Updated 9 years ago
- Bit9 + Carbon Black Threat Intelligence☆82Updated 9 years ago
- Small tool for disassembling shellcode (using objdump)☆148Updated 2 years ago
- Simple shellcode decoder using unicorn-engine☆98Updated 9 years ago
- Malware Analysis Tool using Function Level Fuzzy Hashing☆190Updated 9 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- IDATACO IDA Pro Plugin☆47Updated 8 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- Parse Yara rules and operate over them more easily.☆52Updated 6 years ago
- ☆109Updated 7 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆155Updated 5 years ago
- hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols☆170Updated 6 years ago
- map file generator for intel x86 binary based on flirt signature☆83Updated 9 years ago
- Cryptowall Tooling & Information☆35Updated 9 years ago
- ☆46Updated 8 years ago
- ☆75Updated 8 years ago
- tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net☆33Updated last year
- A clone (of the basic core) of AFL fuzzer☆74Updated 9 years ago
- A python script used to parse the SAM registry hive.☆74Updated 7 years ago
- Rapid deployment of Windows environment (files, registry keys, mutex etc) to facilitate malware analysis☆42Updated 10 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 7 years ago
- ActionScript3 dynamic instrumentation tool☆36Updated 8 years ago
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code☆51Updated 9 years ago
- Automated memory forensics analysis☆33Updated 5 years ago
- Use computer vision to determine if an IDN can be interpreted as something it's not☆62Updated 8 years ago
- a Malware/Threat Analyst Desktop☆89Updated 9 years ago
- Malware Control Monitor☆87Updated 10 years ago
- Proof-of-concept exploit code for CVE-2016-5696☆74Updated 8 years ago