kcreyts / plugxdecoder
Decodes PlugX traffic and encrypted/compressed artifacts
☆37Updated 11 years ago
Related projects: ⓘ
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 4 years ago
- ☆42Updated 5 years ago
- a modified version base on Tracecorn☆20Updated 4 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆82Updated last year
- POSHSPY backdoor code☆43Updated 7 years ago
- a program to detect reflective dll injection on a live machine☆72Updated 8 years ago
- Telsy CTI Research Team☆57Updated 3 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆73Updated 9 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆52Updated 6 years ago
- ActiveMime File Format Documentation☆17Updated 3 years ago
- Yaras Random☆18Updated 5 years ago
- TA505 unpacker Python 2.7☆45Updated 4 years ago
- Hansel - a simple but flexible search for IDA☆25Updated 5 years ago
- Malware samples observed in the wild from time to time☆12Updated 5 years ago
- Use bitsadmin to maintain persistence and bypass Autoruns☆67Updated 7 years ago
- ☆57Updated this week
- SDBbot Unpacker Python 2.7☆9Updated 4 years ago
- GUI Application in C# to run and disassemble shellcode☆35Updated 7 years ago
- ☆30Updated this week
- An exploit for CVE-2016-7255 on Windows 7/8/8.1/10(pre-anniversary) 64 bit☆83Updated 7 years ago
- Analysis PE file or Shellcode☆48Updated 8 years ago
- ☆51Updated 7 years ago
- ☆49Updated 9 years ago
- A python script that can detect and parse loki-bot (malware) related network traffic. This script can be helpful to DFIR analysts and sec…☆12Updated 2 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- ☆41Updated 6 years ago
- ☆26Updated 10 years ago
- Anti-technique Codes, Detection of Anti-technique codes☆36Updated 10 years ago
- Handy scripts to speed up malware analysis☆35Updated 11 months ago
- ☆57Updated this week