mandiant / gostringungarblerLinks
Python tool to resolve all strings in Go binaries obfuscated by garble
☆117Updated 6 months ago
Alternatives and similar repositories for gostringungarbler
Users that are interested in gostringungarbler are comparing it to the libraries listed below
Sorting:
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆68Updated this week
- A command line Windows API tracing tool for Golang binaries.☆157Updated last year
- Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project☆34Updated 5 months ago
- Retrieve inner payloads from Donut samples☆105Updated last year
- ☆113Updated last month
- A collection of modules and scripts to help with analyzing Nim binaries☆78Updated 10 months ago
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆220Updated last month
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆118Updated last year
- A dynamic unpacking tool☆140Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆158Updated last year
- Vulnerable driver research tool, result and exploit PoCs☆214Updated last year
- ☆106Updated 2 years ago
- Tools for analyzing EDR agents☆241Updated last year
- A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …☆50Updated 3 weeks ago
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆119Updated this week
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆152Updated 2 weeks ago
- FLARE Team's Binary Navigator☆276Updated 3 weeks ago
- ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.☆119Updated 4 months ago
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆172Updated 4 months ago
- ☆88Updated 6 months ago
- Ebyte-Go-Morpher is a Go program that parses, analyzes, and rewrites Go source code to apply multiple layers of obfuscation. It operates …☆103Updated last month
- ☆152Updated 3 weeks ago
- Solutions and writeups for the Flare-On 11 (2024) reverse engineering challenge☆67Updated 8 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆334Updated 2 months ago
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆415Updated 2 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- Anti-analysis tool that obfuscates ELF files☆31Updated 4 years ago
- Recon 2023 slides and code☆79Updated 2 years ago
- OFFZONE 2024 Malware Persistence workshop☆19Updated 8 months ago
- Golang bindings for PE-sieve☆42Updated last year