kevoreilly / capemon
capemon: CAPE's monitor
☆110Updated last week
Alternatives and similar repositories for capemon:
Users that are interested in capemon are comparing it to the libraries listed below
- Use YARA rules on Time Travel Debugging traces☆88Updated last year
- Small tool to convert beteween the PE alignments (raw and virtual).☆86Updated 2 years ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆62Updated 2 weeks ago
- Parse .NET executable files.☆76Updated 2 months ago
- ☆105Updated last year
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated 11 months ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 2 years ago
- Robust Automated Malware Unpacker☆84Updated last year
- IDA python plugin to scan binary with Yara rules☆172Updated last year
- Simple windows API logger☆101Updated 5 years ago
- Automatic YARA rule generation for Malpedia☆158Updated 2 years ago
- Generating YARA rules based on binary code☆207Updated 3 years ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆203Updated 2 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated last year
- Set of antianalysis techniques found in malware☆129Updated last year
- Automatically generate AV byte signatures from sets of similar binaries.☆267Updated 3 months ago
- Community modules for CAPE Sandbox☆92Updated last week
- Hyper-V Research is trendy now☆178Updated 10 months ago
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆125Updated 3 years ago
- Collection of rules created using YARA-Signator over Malpedia☆126Updated 4 months ago
- Powershell script deobfuscation using AST in Python☆65Updated last year
- MalUnpack companion driver☆95Updated 9 months ago
- Symbol hash for ELF files☆108Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆142Updated last year
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆64Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆141Updated last month
- Alternative YARA scanning engine☆70Updated 2 years ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆248Updated 2 years ago
- Parsing of YARA rules into AST and building new rulesets in C++.☆123Updated last week