kevoreilly / capemonLinks
capemon: CAPE's monitor
☆118Updated last week
Alternatives and similar repositories for capemon
Users that are interested in capemon are comparing it to the libraries listed below
Sorting:
- Use YARA rules on Time Travel Debugging traces☆90Updated last year
- Native Python3 bindings for @horsicq's Detect-It-Easy☆68Updated 3 weeks ago
- ☆104Updated last year
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- Parse .NET executable files.☆75Updated last week
- Small tool to convert beteween the PE alignments (raw and virtual).☆89Updated 2 years ago
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Community modules for CAPE Sandbox☆97Updated last week
- Automatically generate AV byte signatures from sets of similar binaries.☆273Updated 5 months ago
- Hyper-V Research is trendy now☆180Updated last year
- Robust Automated Malware Unpacker☆84Updated 2 years ago
- Powershell script deobfuscation using AST in Python☆66Updated last year
- Parsing of YARA rules into AST and building new rulesets in C++.☆124Updated 2 weeks ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- An IDA Pro extension for easier (malware) reverse engineering☆114Updated 2 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆249Updated 2 years ago
- Generating YARA rules based on binary code☆210Updated 3 years ago
- SMDA is a minimalist recursive disassembler library that is optimized for accurate Control Flow Graph (CFG) recovery from memory dumps.☆234Updated last month
- HashDB API hash lookup plugin for IDA Pro☆319Updated this week
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- Dataset of packed PE samples☆34Updated 10 months ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆205Updated 2 years ago
- MalUnpack companion driver☆98Updated 11 months ago
- Simple windows API logger☆104Updated 5 years ago
- A collection of ready-to-use library code and symbols for the MinHash-based Code Relationship & Investigation Toolkit (MCRIT)☆11Updated last year
- Bindings for Microsoft WinDBG TTD☆223Updated last year
- ☆101Updated 2 years ago