Parse .NET executable files.
☆85Jan 31, 2026Updated last month
Alternatives and similar repositories for dnfile
Users that are interested in dnfile are comparing it to the libraries listed below
Sorting:
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Updated this week
- ☆27Sep 13, 2023Updated 2 years ago
- VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …☆17Oct 8, 2016Updated 9 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Jun 14, 2022Updated 3 years ago
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆119Apr 8, 2023Updated 2 years ago
- ☆115Feb 13, 2026Updated 2 weeks ago
- Anything related to Ghidra☆12Apr 22, 2019Updated 6 years ago
- ☆35Oct 29, 2021Updated 4 years ago
- A tool to perform so called BGE attack☆26Jun 13, 2025Updated 8 months ago
- Dynamic unpacker based on PE-sieve☆796Sep 13, 2025Updated 5 months ago
- Pure Python parser for data encoded by .NET's BinaryFormatter☆54Sep 4, 2018Updated 7 years ago
- Royal Road RTF Weaponizer object decoder☆24Sep 26, 2024Updated last year
- A little implant which SSH's back with a shell☆39Feb 1, 2022Updated 4 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Jun 28, 2023Updated 2 years ago
- Collection of generic YARA rules☆16Aug 17, 2025Updated 6 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆264Aug 23, 2023Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 2 years ago
- The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.☆56Dec 23, 2020Updated 5 years ago
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆650Mar 14, 2025Updated 11 months ago
- Basic file metadata gathering script☆21Apr 16, 2025Updated 10 months ago
- very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake☆14Aug 23, 2022Updated 3 years ago
- A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL☆139Mar 24, 2024Updated last year
- Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).☆163Aug 23, 2024Updated last year
- An IDA Pro extension for easier (malware) reverse engineering☆116Aug 2, 2022Updated 3 years ago
- Execute .Net assemblies using Rundll32.exe☆115Mar 17, 2021Updated 4 years ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- Get-PDInvokeImports is tool (PowerShell module) which is able to perform automatic detection of P/Invoke, Dynamic P/Invoke and D/Invoke u…☆54Apr 10, 2022Updated 3 years ago
- JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.☆56Dec 11, 2020Updated 5 years ago
- An extremely experimental Binary Ninja importer for the type layout information emitted by the -Zprint-type-sizes flag of the Rust compil…☆38Jul 3, 2023Updated 2 years ago
- Titan: A generic user defined reflective DLL for Cobalt Strike☆85Nov 20, 2022Updated 3 years ago
- all credits go to @mgeeky☆65Oct 14, 2021Updated 4 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 7 months ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Aug 7, 2024Updated last year
- VirusTotal Intelligence Search☆40May 21, 2020Updated 5 years ago
- A string obfuscator for .NET apps, built to evade static string analysis.☆109Jan 3, 2023Updated 3 years ago
- Regipy is an os independent python library for parsing offline registry hives☆266Jan 22, 2026Updated last month
- Reads out structural information on Microsoft .exe formats☆43Jun 25, 2024Updated last year
- Disassemble bytecodes as MSIL☆18Jul 31, 2021Updated 4 years ago