Alternatives and similar repositories for yaradec

Users that are interested in yaradec are comparing it to the libraries listed below

• lcashdol / UPX
  A utility to fix intentionally corrupted UPX packed files.
  ☆93Updated 2 years ago
• IridiumXOR / uclibc-sig
  IDA SIG files for multiarch uClibc library
  ☆38Updated 7 years ago
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆32Updated 7 years ago
• hongson11698 / defender-database-extract
  defender_database
  ☆24Updated 2 years ago
• PwCUK-CTO / iis-helper-plugin
  IDA Pro plugin to aid with the analysis of native IIS modules
  ☆21Updated last year
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆26Updated 4 months ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆83Updated 3 years ago
• the-deniss / Vulnerability-Disclosures
  Vulnerability analysis and proof of concepts
  ☆37Updated 2 years ago
• malwarefrank / dnfile
  Parse .NET executable files.
  ☆83Updated last week
• killvxk / POCS
  May the POC be with you
  ☆65Updated last month
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆96Updated 2 years ago
• t0-retooling / defender-recon24
  ☆59Updated last year
• hidd3ncod3s / WindowsAPIhash
  Windows API Hashes used in the malwares
  ☆42Updated 10 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆118Updated 2 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆70Updated 2 years ago
• g0mxxm / shellcode_extractor_for_maldoc
  The code in this repository which function is to extract the shellcode from the maldoc.
  ☆10Updated 2 years ago
• n1ght-w0lf / pe-unmapper
  A small tool to unmap PE memory dumps.
  ☆11Updated 2 years ago
• 0vercl0k / paracosme
  Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…
  ☆89Updated 2 years ago
• therealdreg / shellex
  C-shellcode to hex converter, handy tool for paste & execute shellcodes in IDA PRO, gdb, windbg, radare2, ollydbg, x64dbg, immunity debug…
  ☆114Updated 2 years ago
• airbus-cert / vbSparkle
  VBScript & VBA source-to-source deobfuscator with partial-evaluation
  ☆80Updated last year
• splunk / PPLinject
  Inject unsigned DLL into Protected Process Light (PPL)
  ☆36Updated 8 months ago
• NozomiNetworks / upx-recovery-tool
  ☆116Updated 3 years ago
• airbus-cert / ttd2mdmp
  Extract data of TTD trace file to a minidump
  ☆31Updated 2 years ago
• milankovo / YaraVM
  This repository contains an IDA processor for loading and disassembling compiled yara rules.
  ☆44Updated last year
• orca-eaa5a / mac-defender
  ☆11Updated 4 years ago
• hd3s5aa / CVE-2023-21674
  ☆38Updated last year
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆21Updated 5 years ago
• ihack4falafel / ROR13HashGenerator
  C# implementation to produce ROR-13 numeric hash for given function API name
  ☆34Updated 6 years ago
• bartblaze / DotNet-MetaData
  Identifies metadata of .NET binary files.
  ☆21Updated last year
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆62Updated 2 years ago