mandiant / gostringungarblerLinks
Python tool to resolve all strings in Go binaries obfuscated by garble
☆177Updated 10 months ago
Alternatives and similar repositories for gostringungarbler
Users that are interested in gostringungarbler are comparing it to the libraries listed below
Sorting:
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆74Updated 4 months ago
- A command line Windows API tracing tool for Golang binaries.☆159Updated 2 years ago
- Retrieve inner payloads from Donut samples☆114Updated 3 weeks ago
- ElfDoor-gcc is an LD_PRELOAD that hijacks gcc to inject malicious code into binaries during linking, without touching the source code.☆132Updated 8 months ago
- Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project☆42Updated 9 months ago
- Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection☆135Updated 7 months ago
- Comprehensive Windows Syscall Extraction & Analysis Framework☆159Updated 4 months ago
- A Linux kernel rootkit in Rust using a custom made type-2 hypervisor, eBPF XDP and TC programs☆335Updated 6 months ago
- Ebyte-Go-Morpher is a Go program that parses, analyzes, and rewrites Go source code to apply multiple layers of obfuscation. It operates …☆120Updated 5 months ago
- A Windows Named Pipe Multi-tool / Proxy☆217Updated 3 weeks ago
- ☆121Updated this week
- A collection of modules and scripts to help with analyzing Nim binaries☆82Updated last year
- FLARE Team's Binary Navigator☆297Updated 2 weeks ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆167Updated last year
- Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…☆200Updated 3 months ago
- A dynamic unpacking tool☆145Updated 2 years ago
- ☆112Updated 3 years ago
- Vulnerable driver research tool, result and exploit PoCs☆225Updated 2 years ago
- Tools for analyzing EDR agents☆274Updated last year
- Binary Exploitation Phrack CTF Challenge☆139Updated 4 months ago
- Python tool to check rootkits in Windows kernel☆204Updated 4 months ago
- ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…☆164Updated 3 weeks ago
- A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …☆63Updated 5 months ago
- Shellcode IDE — makes developing and analyzing shellcode much more convenient.☆107Updated last month
- Cheat sheet to detect and remove linux kernel rootkit☆77Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆124Updated last year
- Collection of codes focused on Linux rootkits☆188Updated 2 months ago
- POC exploit for CVE-2025-21333 heap-based buffer overflow. It leverages WNF state data and I/O ring IOP_MC_BUFFER_ENTRY☆225Updated 8 months ago
- Elf binary infector written in Go.☆214Updated 11 months ago
- A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders imp…☆335Updated last year