kevoreilly / capemonLinks
capemon: CAPE's monitor
☆127Updated this week
Alternatives and similar repositories for capemon
Users that are interested in capemon are comparing it to the libraries listed below
Sorting:
- Native Python3 bindings for @horsicq's Detect-It-Easy☆75Updated 4 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated last year
- Use YARA rules on Time Travel Debugging traces☆93Updated 2 years ago
- Small tool to convert beteween the PE alignments (raw and virtual).☆98Updated 2 years ago
- Parse .NET executable files.☆77Updated last month
- Automatically generate AV byte signatures from sets of similar binaries.☆280Updated 9 months ago
- HashDB API hash lookup plugin for IDA Pro☆333Updated 4 months ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- A DTrace on Windows Reimplementation☆359Updated this week
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- Powershell script deobfuscation using AST in Python☆72Updated 2 weeks ago
- ☆110Updated 3 weeks ago
- Dataset of packed PE samples☆38Updated last year
- IDA python plugin to scan binary with Yara rules☆178Updated last year
- ☆109Updated 2 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆215Updated 3 years ago
- Robust Automated Malware Unpacker☆85Updated 2 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆117Updated 2 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆167Updated this week
- Tools developed by the Zscaler ThreatLabz Threat Intelligence team☆85Updated 2 weeks ago
- Set of antianalysis techniques found in malware☆131Updated 2 years ago
- FLARE Team's Binary Navigator☆284Updated 2 months ago
- Document ETW providers☆251Updated 5 years ago
- Python implementation of the Packed Executable iDentifier (PEiD)☆140Updated last year
- IDA plugin for quickly copying disassembly as encoded hex bytes☆63Updated 3 years ago
- Community modules for CAPE Sandbox☆103Updated last week
- Simple windows API logger☆109Updated 6 years ago
- MalUnpack companion driver☆99Updated last year
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆256Updated 2 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆68Updated 4 years ago