mandiant / rvmi
rVMI - A New Paradigm For Full System Analysis
☆354Updated 7 years ago
Alternatives and similar repositories for rvmi:
Users that are interested in rvmi are comparing it to the libraries listed below
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆281Updated last year
- Conference slides and White-papers☆356Updated 5 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 6 years ago
- Collaborative malware analysis framework☆375Updated 6 years ago
- Various snippets created during malware analysis☆458Updated 2 years ago
- A tool to detect and crash Cuckoo Sandbox☆289Updated 6 months ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆229Updated last year
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- capstone based disassembler for extracting to binnavi☆227Updated 8 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 7 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 5 years ago
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆284Updated 8 years ago
- Protocol Analysis/Decoder Framework☆491Updated 2 years ago
- Linux ELF x32/x64 ASLR DEP/NX bypass exploit with stack-spraying☆297Updated 2 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆236Updated 8 years ago
- Tool written in python3 to determine where the AV signature is located in a binary/payload☆313Updated 6 years ago
- BASS - BASS Automated Signature Synthesizer☆174Updated 6 years ago
- HORSEPILL rootkit PoC☆225Updated 8 years ago
- Differential Analysis of Malware in Memory☆211Updated 7 years ago
- Python script to decode common encoded PowerShell scripts☆216Updated 6 years ago
- Binee: binary emulation environment☆513Updated last year
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago
- Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode☆726Updated 2 years ago
- Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …☆281Updated 7 years ago
- SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]☆409Updated 4 years ago
- Modified edition of cuckoo☆396Updated 7 years ago
- Official repository for Pyew.☆388Updated 5 years ago
- ☆109Updated 7 years ago
- Linux bind shell with anti-reverse engineering techniques☆284Updated 8 years ago