malice-plugins / windows-defender
Malice Windows Defender AntiVirus Plugin
☆33Updated last year
Related projects: ⓘ
- Telsy CTI Research Team☆57Updated 3 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆82Updated last year
- A Portable Executable parser for Golang☆47Updated last year
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 4 years ago
- Malice Kaspersky Antivirus Plugin☆15Updated 5 years ago
- Malice Office/OLE/RTF Plugin☆13Updated 6 years ago
- Golang parser for OLE files☆31Updated 3 months ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆32Updated 4 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆52Updated 6 years ago
- ☆12Updated last year
- Community-based integrated malware identification system☆82Updated last year
- Collect autorun records from running system☆59Updated 2 years ago
- Malice PExecutable Plugin☆16Updated 3 years ago
- ☆23Updated 5 years ago
- A collection of shellcode hashes☆17Updated 6 years ago
- ☆47Updated 4 years ago
- Rekall Memory Forensic Framework☆29Updated 5 years ago
- A More Comfortable (remote) SHell with full pty support and both reverse / bindport connection mode.☆30Updated 11 years ago
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago
- ☆25Updated last year
- ☆53Updated 5 years ago
- Malice Bitdefender AntiVirus Plugin☆13Updated 4 years ago
- ☆58Updated 4 years ago
- ☆42Updated 5 years ago
- ReaCOM has got a lot of tools to use and is related to component object model☆73Updated 4 years ago
- Go bindings for YARA☆12Updated 6 months ago
- PoC that manipulates Windows file times using SetFileTime() API☆53Updated 5 years ago
- Windows Event Log Knowledge Base☆16Updated 4 months ago
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆117Updated 4 years ago
- a program to detect reflective dll injection on a live machine☆72Updated 8 years ago