jeFF0Falltrades / Malware-Writeups
A collection of my reverse engineering and malware analysis write-ups
☆20Updated 3 years ago
Related projects: ⓘ
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆44Updated 6 months ago
- This is a little plugin to copy disassembly in a way that is usable in YARA rules!☆30Updated last year
- ☆58Updated 2 months ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆48Updated 5 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆24Updated last year
- ☆26Updated last month
- Imphash-like calculation on Golang binaries☆48Updated 2 years ago
- Tools for offensive security of NetBackup infrastructures☆38Updated last year
- Collection of my own detection rules☆13Updated 7 months ago
- My Malware Analysis Reports☆18Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- ☆13Updated last year
- Python wrappers for mal_unpack☆34Updated last year
- ☆18Updated 3 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- A small utility to deal with malware embedded hashes.☆48Updated 11 months ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- Reverse Engineering and Debugging Malware☆28Updated last year
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆34Updated last year
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆24Updated 7 months ago
- Radare2 Metadata Extraction to Elasticsearch☆21Updated 3 months ago
- ☆27Updated 2 years ago
- Yara Rules for Modern Malware☆68Updated 6 months ago
- Here are some of my malware reversing papers that I will be publishing☆30Updated 2 years ago
- Malware Configuration Extraction Modules☆48Updated 9 months ago
- Tools that trigger False Positive AV alerts☆42Updated last year
- Decode Royal Road RTF Weaponizer 8.t object☆22Updated 2 months ago