mandiant / poisonplug-scatterbrainLinks
Deobfuscation library for PoisionPlug.SHADOW's ScatterBrain obfuscator
☆64Updated 5 months ago
Alternatives and similar repositories for poisonplug-scatterbrain
Users that are interested in poisonplug-scatterbrain are comparing it to the libraries listed below
Sorting:
- ☆88Updated 6 months ago
- Abusing exceptions for code execution.☆111Updated 2 years ago
- Binary Ninja plugin to deobfuscate strings obfuscated with the Garble project☆34Updated 5 months ago
- ☆92Updated last year
- A Python script to download PDB files associated with a Portable Executable (PE)☆125Updated 6 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆72Updated last year
- ☆25Updated 10 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆116Updated 2 years ago
- ☆152Updated 3 weeks ago
- ☆57Updated 6 months ago
- ☆31Updated 6 months ago
- Modular and extensible library for Virtual Machine Introspection☆107Updated 2 weeks ago
- Rule Engine for Dynamic Malware Analysis and Research☆25Updated 4 months ago
- A set of LLVM and GCC based plugins that perform code obfuscation.☆128Updated 2 months ago
- NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (eithe…☆220Updated last month
- PEIM (UEFI) bootkit targeting OVMF (EDK2)☆36Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆119Updated last year
- bypassing intel txt's tboot integrity checks via coreboot shim☆80Updated 5 months ago
- ☆71Updated 2 years ago
- Contains all the applications developed for the Second part of the 7th Edition of Windows Internals book☆112Updated last year
- MalUnpack companion driver☆98Updated last year
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆82Updated last year
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated 2 years ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆47Updated 3 months ago
- A collection of modules and scripts to help with analyzing Nim binaries☆78Updated 10 months ago
- ☆19Updated 2 years ago
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆68Updated last week
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- All LLVM binaries scrambled with SigBreaker and used to test against llvm-lit☆24Updated 3 months ago
- a PE Loader and Windows API tracer. Useful in malware analysis.☆143Updated 2 years ago