mandiant / flare-dbgLinks
flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
☆150Updated 7 years ago
Alternatives and similar repositories for flare-dbg
Users that are interested in flare-dbg are comparing it to the libraries listed below
Sorting:
- Automated malware unpacker☆120Updated 9 years ago
- ☆91Updated 8 years ago
- ☆109Updated 8 years ago
- Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.☆164Updated 2 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆239Updated 8 years ago
- PyAna - Analyzing the Windows shellcode☆247Updated 9 years ago
- zer0m0n driver for cuckoo sandbox☆88Updated 9 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 8 years ago
- Fuzz and Detect "Use After Free" vulnerability in win32k.sys ( Heap based )☆135Updated 9 years ago
- IDATACO IDA Pro Plugin☆47Updated 9 years ago
- Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"☆69Updated 3 years ago
- A tool to detect and crash Cuckoo Sandbox☆295Updated last year
- Toolkit for enriching and speeding up static malware analysis☆168Updated 3 years ago
- ☆99Updated last year
- A Tool to Unpack Self-Modifying Code using DynamoRIO☆141Updated 8 years ago
- This is a plugin for OllyDbg 1.10 to replace the old disasm engine by Capstone disassembly/disassembler framework.☆79Updated 10 years ago
- Sublime Malware Research Tool☆66Updated 9 months ago
- The IDA Toolbag is a plugin providing supplemental functionality to Hex-Rays IDA Pro disassembler.☆314Updated 9 years ago
- Yet another Python library to read and write PE/PE+ files.☆78Updated 8 years ago
- C++ application that uses memory and code hooks to detect packers☆271Updated 7 years ago
- A system to record malware using PANDA☆44Updated 6 years ago
- map file generator for intel x86 binary based on flirt signature☆83Updated 9 years ago
- Offline debugger for malware's reverse engineering☆113Updated 10 years ago
- ☆52Updated 10 years ago
- grap: define and match graph patterns within binaries☆171Updated 4 years ago
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆286Updated 9 years ago
- Smart DLL execution for malware analysis in sandbox systems☆144Updated 10 years ago
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆231Updated last year
- Malware Behavior Analyzer☆159Updated 8 years ago
- IDAtropy is a plugin for Hex-Ray's IDA Pro designed to generate charts of entropy and histograms using the power of idapython and matplot…☆142Updated 4 years ago