mandiant / remote_lookup
Resolves DLL API entrypoints for a process w/ remote query capabilities.
☆55Updated 7 years ago
Alternatives and similar repositories for remote_lookup:
Users that are interested in remote_lookup are comparing it to the libraries listed below
- POC for IAT Parsing Payloads☆47Updated 8 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- ☆68Updated 7 years ago
- Analysis PE file or Shellcode☆49Updated 8 years ago
- Various snippets created during malware analysis☆22Updated 6 years ago
- officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …☆16Updated 8 years ago
- Python script to inject and run shellcodes through TLS callbacks☆50Updated 9 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- ☆22Updated 7 years ago
- Fileless SQL Server CLR-based Custom Stored Procedure Command Execution☆35Updated 8 years ago
- Some sample code from my Zero Nights 2017 presentation.☆62Updated 7 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- ☆33Updated 7 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Updated 8 years ago
- An offensive Powershell console☆30Updated 9 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 8 years ago
- Tool for dropping malware from EK☆40Updated 7 years ago
- UAC 0Day all day!☆58Updated 7 years ago
- library to decode/parse zeus-like configuration files☆29Updated 6 years ago
- Collection of my Python Scripts☆41Updated 4 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 6 years ago
- A tiny PoC to inject and execute code into explorer.exe with WM_SETTEXT+WM_COPYDATA+SetThreadContext☆50Updated 6 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Simple DDE object detector☆56Updated 7 years ago
- API functions for Malware Research☆35Updated 5 years ago
- a collection of yara rules for binary analysis☆24Updated 7 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 7 years ago
- Usefull snippets / Computer-security oriented☆21Updated 7 years ago
- Python based module to find common vulnerabilities which lead to Windows privilege escalation☆32Updated 8 years ago
- QEMU with rVMI extensions☆25Updated 7 years ago