libyal / libmsiecf

Related projects: ⓘ

• libyal / libsigscan
  Library for binary signature scanning.
  ☆27Updated last month
• 504ensicsLabs / regdecoderlive
  This is a copy of the Registry Decoder Live repository from Google Code
  ☆9Updated 9 years ago
• 4n6ist / usn_analytics
  It's not just UsnJrnl (USN Journal Records/Change Journal Records) parser.
  ☆22Updated 5 years ago
• Rurik / PE_Carver
  Carves EXEs from given data files, using intelligent carving based upon PE headers
  ☆36Updated 7 years ago
• williballenthin / LfLe
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆25Updated 8 years ago
• libyal / libagdb
  Library and tools to access the Windows SuperFetch database format
  ☆12Updated 2 months ago
• libyal / libvsmbr
  Library and tools to access the Master Boot Record (MBR) volume system format
  ☆12Updated 3 months ago
• PoorBillionaire / Windows-Prefetch-Carver
  Carve Windows Prefetch files from arbitrary binary data
  ☆14Updated 7 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated last year
• secabstraction / PowerWalker
  ☆21Updated 8 years ago
• Neo23x0 / ReginScanner
  Scanner for Regin Virtual Filesystems
  ☆26Updated 9 years ago
• ph0sec / CaptureBAT-client
  Capture BAT is a behavioral analysis tool of applications for the Win32 operating system family.
  ☆29Updated 11 years ago
• CIRCL / PyRichHeader
  A Python parser for Rich Headers
  ☆14Updated 9 years ago
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆20Updated 2 years ago
• woanware / JumpLister
  ☆18Updated 11 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 6 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆33Updated 8 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆23Updated 7 years ago
• cysinfo / Malpimp
  Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook t…
  ☆8Updated 8 years ago
• dzzie / sclog
  ☆24Updated this week
• spender-sandbox / cuckoomon-modified
  Modified edition of cuckoomon
  ☆48Updated 6 years ago
• prolsen / yara-rules
  ☆13Updated this week
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆16Updated 2 months ago
• dzzie / HookExplorer
  ☆48Updated this week
• vallejocc / Malware-Analysis-Reports
  ☆10Updated this week
• TheEnergyStory / malware_analysis
  Malware analyses and helpful scripts
  ☆29Updated 2 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 7 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆48Updated 8 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆34Updated 8 years ago
• libyal / libevt
  Library and tools to access the Windows Event Log (EVT) format
  ☆57Updated 2 months ago