lasq88 / deobfuscate
Python script to automatically deobfuscate malware code
☆58Updated 6 years ago
Related projects: ⓘ
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆124Updated 6 years ago
- Various scripts for different malware families☆106Updated 3 years ago
- A Simple PE File Heuristics Scanners☆49Updated 5 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆20Updated 3 years ago
- ☆61Updated this week
- A Maltego transform for VirusTotal Submitter Information☆30Updated 5 years ago
- Malware captured with honeypots☆35Updated 6 years ago
- Simple PowerShell Base64 encoder to avoid detection of your malicious payload☆77Updated 6 years ago
- Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.☆129Updated 10 years ago
- ☆43Updated 5 years ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 5 years ago
- Tool to help guess a files 256 byte XOR key by using frequency analysis☆84Updated 6 years ago
- When CactusTorch meets WebDavDelivery and obfuscation☆63Updated 7 years ago
- ☆50Updated this week
- The Python Password-Protected Obfuscator☆34Updated 5 years ago
- Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.☆44Updated 4 years ago
- Vocabulary Scraper script used in FLARE's analysis of Russian-language Carbanak source code☆36Updated 5 years ago
- Alina Spark - Point of Sales Trojan☆46Updated 9 years ago
- PowerShell Reverse HTTPs Shell☆26Updated 9 years ago
- ☆65Updated this week
- Placeholder for IRIS-H Digital Forensics Tool☆12Updated 6 years ago
- A C# DLL to Dump LSA Secrets☆56Updated 6 years ago
- Platform independent peCloak fork based on Capstone☆103Updated 8 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- This repo contains all the code that will be referred at https://scriptdotsh.com by Paranoid Ninja☆45Updated 4 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆60Updated 7 years ago
- Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.☆31Updated 8 years ago
- Process HTTP Pcaps With YARA☆99Updated 11 years ago
- Metasploit python-payload obfuscation, to allow penetration testers bypass Antivirus solutions.☆29Updated 2 years ago
- APT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade…☆34Updated 5 years ago