mandiant / flare-dbg
flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
☆150Updated 7 years ago
Alternatives and similar repositories for flare-dbg:
Users that are interested in flare-dbg are comparing it to the libraries listed below
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆132Updated 9 years ago
- zer0m0n driver for cuckoo sandbox☆87Updated 8 years ago
- ☆91Updated 8 years ago
- Automated malware unpacker☆120Updated 9 years ago
- ☆109Updated 7 years ago
- Toolkit for enriching and speeding up static malware analysis☆167Updated 3 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 7 years ago
- IDATACO IDA Pro Plugin☆47Updated 8 years ago
- A clone (of the basic core) of AFL fuzzer☆74Updated 9 years ago
- PyAna - Analyzing the Windows shellcode☆247Updated 9 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆237Updated 8 years ago
- ☆113Updated 8 years ago
- ☆99Updated 9 months ago
- IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…☆138Updated 3 years ago
- Download all of Microsoft's security updates and symbols☆42Updated 8 years ago
- A system to record malware using PANDA☆43Updated 5 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.☆162Updated last year
- map file generator for intel x86 binary based on flirt signature☆84Updated 8 years ago
- A Tool to Unpack Self-Modifying Code using DynamoRIO☆141Updated 7 years ago
- Sublime Malware Research Tool☆65Updated 4 months ago
- ☆52Updated 9 years ago
- Yet another Python library to read and write PE/PE+ files.☆80Updated 8 years ago
- A set of scripts for a radare-based malware code analysis workflow☆67Updated 6 years ago
- Frida.re based RunPE (and MapViewOfSection) extraction tool☆111Updated 8 years ago
- "Just Another ReVersIng Suite" or whatever other bullshit you can think of☆150Updated last year
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆284Updated 8 years ago
- qb-sync is an open source tool to add some helpful glue between IDA Pro and Windbg. Its core feature is to dynamically synchronize IDA's …☆120Updated 9 years ago
- Smart DLL execution for malware analysis in sandbox systems☆143Updated 10 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 5 years ago