intezer / analyze-community-ghidra-plugin

Related projects ⓘ

Alternatives and complementary repositories for analyze-community-ghidra-plugin

• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆48Updated 5 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆46Updated 4 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• mauronz / binja-emotet
  ☆18Updated 4 years ago
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆21Updated 6 months ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 2 years ago
• intezer / analyze-scripts
  ☆26Updated last year
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆39Updated 5 years ago
• redcanaryco / exploit-primitive-playground
  ☆59Updated 4 months ago
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆46Updated 2 years ago
• SecurityRiskAdvisors / PDBlaster
  ☆48Updated 4 years ago
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆30Updated 4 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆24Updated 2 years ago
• reb311ion / emerald
  Import DynamoRIO drcov code coverage data into Ghidra
  ☆42Updated 11 months ago
• hasherezade / flareon2019
  Flare-On solutions
  ☆36Updated 5 years ago
• Malshare / MalShare
  ☆22Updated 4 years ago
• nao-sec / rr_decoder
  Royal Road RTF Weaponizer object decoder
  ☆24Updated last month
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆48Updated last year
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆25Updated 4 years ago
• Dump-GUY / CAPA_JsonConver
  Converts exported results of CAPA tool from .json format to another formats supporting by different tools.
  ☆22Updated 2 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆67Updated 5 months ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆47Updated last year
• fr0gger / SuperPeHasher
  SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.
  ☆27Updated 3 years ago
• FernandoDoming / r2diaphora
  Port of the binary diffing library, diaphora, for radare2 and mariadb
  ☆49Updated last year
• 3vangel1st / 100DaysOfYARA
  ☆27Updated 2 years ago