mandiant / rvmiLinks
rVMI - A New Paradigm For Full System Analysis
☆355Updated 7 years ago
Alternatives and similar repositories for rvmi
Users that are interested in rvmi are comparing it to the libraries listed below
Sorting:
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆286Updated last year
- ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.☆286Updated 9 years ago
- C++ application that uses memory and code hooks to detect packers☆270Updated 7 years ago
- Collaborative malware analysis framework☆374Updated 6 years ago
- Conference slides and White-papers☆357Updated 5 years ago
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆230Updated last year
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 4 years ago
- Various snippets created during malware analysis☆458Updated 2 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆155Updated 5 years ago
- Protocol Analysis/Decoder Framework☆493Updated 2 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 8 years ago
- ATrace is a tool for tracing execution of binaries on Windows.☆238Updated 8 years ago
- A tool to detect and crash Cuckoo Sandbox☆294Updated 10 months ago
- Modified edition of cuckoo☆402Updated 7 years ago
- capstone based disassembler for extracting to binnavi☆228Updated 9 years ago
- Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.☆499Updated last year
- Linux bind shell with anti-reverse engineering techniques☆287Updated 8 years ago
- PyAna - Analyzing the Windows shellcode☆247Updated 9 years ago
- BASS - BASS Automated Signature Synthesizer☆175Updated 6 years ago
- Radare Congress Stuff☆210Updated 7 months ago
- HORSEPILL rootkit PoC☆228Updated 8 years ago
- Binee: binary emulation environment☆522Updated 2 years ago
- hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols☆170Updated 6 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 7 years ago
- Malware Analysis Tool using Function Level Fuzzy Hashing☆190Updated 9 years ago
- Decept Network Protocol Proxy☆277Updated 2 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Updated 7 years ago
- The Multiplatform Linux Sandbox☆262Updated 3 years ago
- Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.☆164Updated 2 years ago