mandiant / remote_lookupLinks
Resolves DLL API entrypoints for a process w/ remote query capabilities.
☆55Updated 8 years ago
Alternatives and similar repositories for remote_lookup
Users that are interested in remote_lookup are comparing it to the libraries listed below
Sorting:
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- API functions for Malware Research☆35Updated 6 years ago
- Analysis PE file or Shellcode☆49Updated 9 years ago
- A Generic Windows Memory Scraping Tool☆71Updated 8 years ago
- ☆43Updated 7 years ago
- UAC 0Day all day!☆57Updated 7 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- IDA Pro plugin that rename functions on load, based on functionality☆19Updated 7 years ago
- Scripts targeting specific families☆13Updated 8 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit☆100Updated 6 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 10 years ago
- ☆52Updated 8 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- PowerShell Module Bindings for Capstone/Keystone☆24Updated 8 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- ☆22Updated 8 years ago
- fragments of dirty, and quick code. possible error checking or none.☆24Updated 8 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Python script to inject and run shellcodes through TLS callbacks☆49Updated 10 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- API Tracker by Cysinfo Team☆22Updated 8 years ago
- officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …☆16Updated 9 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Updated 8 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago