mandiant / remote_lookupLinks
Resolves DLL API entrypoints for a process w/ remote query capabilities.
☆56Updated 8 years ago
Alternatives and similar repositories for remote_lookup
Users that are interested in remote_lookup are comparing it to the libraries listed below
Sorting:
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- API functions for Malware Research☆35Updated 6 years ago
- a collection of yara rules for binary analysis☆24Updated 8 years ago
- Analysis PE file or Shellcode☆50Updated 9 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- A Generic Windows Memory Scraping Tool☆71Updated 8 years ago
- IDA Pro plugin that rename functions on load, based on functionality☆19Updated 7 years ago
- POC for IAT Parsing Payloads☆48Updated 8 years ago
- UAC 0Day all day!☆57Updated 8 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- ☆22Updated 8 years ago
- Scripts targeting specific families☆13Updated 8 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- ☆43Updated 7 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- Some sample code from my Zero Nights 2017 presentation.☆61Updated 7 years ago
- Exploit Reliability Testing System☆35Updated 10 years ago
- ☆53Updated 8 years ago
- Supporting Files on my analysis of the malware designated hdroot.☆59Updated 8 years ago
- Python script to inject and run shellcodes through TLS callbacks☆49Updated 10 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit☆100Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 7 years ago
- HackSys Extreme Vulnerable Driver - ArbitraryOverwrite Exploit☆26Updated 8 years ago
- Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…☆71Updated 11 years ago
- Yet another Python library to read and write PE/PE+ files.☆78Updated 8 years ago
- A ready to deploy docker container for a fresh sandbox for on-the-fly malware analysis☆42Updated 8 years ago
- API Tracker by Cysinfo Team☆22Updated 8 years ago