libyal / assortedLinks
Assorted documentation, scripts and tools
☆36Updated 11 months ago
Alternatives and similar repositories for assorted
Users that are interested in assorted are comparing it to the libraries listed below
Sorting:
- Library and tools to access the Windows Event Log (EVT) format☆60Updated last year
- ☆13Updated 9 years ago
- ☆32Updated last year
- ☆43Updated 5 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Updated 7 years ago
- Pure Python parser for data encoded by .NET's BinaryFormatter☆53Updated 7 years ago
- Public documents about bachelor thesis "Reverse Engineering Analysis of the NDIS 6.* stack"☆41Updated 9 years ago
- a collection of yara rules for binary analysis☆24Updated 8 years ago
- bunch of random stuff☆21Updated 5 years ago
- pure Python binary analysis framework☆23Updated 6 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆27Updated 9 years ago
- Cockroach is your primitive & immortal swiss army knife.☆49Updated 3 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆77Updated 10 years ago
- Linux-KVM with rVMI extensions☆22Updated 8 years ago
- Source codes for "The Antivirus Hackers Handbook" book.☆60Updated 10 years ago
- Yara filetype plugin for Vim.☆14Updated 4 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- BONOMEN - Hunt for Malware Critical Process Impersonation☆49Updated 4 years ago
- Imports MSDN documentation into IDA Pro☆51Updated 13 years ago
- Volatility memory forensics plugin for extracting Windows DNS Cache☆29Updated 8 years ago
- LPE exploits for Secret Net and Secret Net Studio☆51Updated 9 years ago
- API Tracker by Cysinfo Team☆22Updated 8 years ago
- Emu-strings project - JScript/VBScript automated dropper analysis system☆18Updated 4 years ago
- ☆52Updated 7 years ago
- A tool to generate yara signatures from function blocks☆19Updated 10 years ago
- MALM: Malware Monitor☆50Updated 12 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- ViDi Visual Disassembler (experimental)☆77Updated 2 years ago