malwarefrank / dnfileLinks
Parse .NET executable files.
☆76Updated last month
Alternatives and similar repositories for dnfile
Users that are interested in dnfile are comparing it to the libraries listed below
Sorting:
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆73Updated last year
- Small tool to convert beteween the PE alignments (raw and virtual).☆90Updated 2 years ago
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆116Updated 11 months ago
- MalUnpack companion driver☆98Updated last year
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆70Updated last month
- ☆106Updated last year
- Writeups for CTF challenges☆31Updated last year
- UnpacMe IDA Byte Search☆28Updated last year
- Use YARA rules on Time Travel Debugging traces☆91Updated last year
- ☆145Updated 2 years ago
- ☆71Updated last year
- JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.☆54Updated 4 years ago
- Small visualizator for PE files☆69Updated last year
- IDA plugin for quickly copying disassembly as encoded hex bytes☆62Updated 3 years ago
- A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL☆135Updated last year
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆165Updated this week
- Binary Ninja plugin for exploring Structured Exception Handlers☆81Updated last year
- Write-ups for FireEye's FLARE-On challenges☆25Updated 5 years ago
- ☆24Updated last year
- A Python script to download PDB files associated with a Portable Executable (PE)☆121Updated 4 months ago
- ☆31Updated 3 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- Set of antianalysis techniques found in malware☆132Updated last year
- Nim-IDA-FLIRT-Generator☆15Updated last year
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 3 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆20Updated 2 years ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆77Updated 10 months ago