magicsword-io / bootloaders
bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security professionals in staying informed and mitigating potential threats associated with bootloaders.
☆51Updated last year
Alternatives and similar repositories for bootloaders:
Users that are interested in bootloaders are comparing it to the libraries listed below
- Malware Analysis tools☆25Updated 6 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- Powershell Linter☆50Updated this week
- ☆25Updated 3 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Tools for offensive security of NetBackup infrastructures☆39Updated last year
- Identifies metadata of .NET binary files.☆21Updated 11 months ago
- BINARLY Research Tools and PoCs☆35Updated 5 months ago
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆52Updated 2 months ago
- Repository of Volatility3 plugins☆21Updated last year
- Modular malware analysis artifact collection and correlation framework☆53Updated 10 months ago
- ☆22Updated 9 months ago
- Yara Rules for Modern Malware☆73Updated last year
- Linux #rootkit and #malware revealer☆24Updated 7 months ago
- ☆28Updated last month
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆22Updated 11 months ago
- A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue☆96Updated 10 months ago
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- This is a little plugin to copy disassembly in a way that is usable in YARA rules!☆41Updated last year
- a tiny program to consume from ETW providers for research☆46Updated 2 months ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆114Updated 8 months ago
- ☆36Updated last week
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- ☆35Updated 3 months ago
- Golang bindings for PE-sieve☆42Updated last year
- ☆18Updated 11 months ago
- Cheat sheet to detect and remove linux kernel rootkit☆51Updated 2 months ago