mandiant / siglib

Related projects: ⓘ

• hasherezade / pin_n_sieve
  An experimental dynamic malware unpacker based on Intel Pin and PE-sieve
  ☆57Updated 3 weeks ago
• yardenshafir / cet-research
  A collection of tools, source code, and papers researching Windows' implementation of CET.
  ☆72Updated 3 years ago
• redplait / armpatched
  clone of armadillo patched for windows
  ☆45Updated 5 months ago
• cxiao / ida-rust-untangler
  An IDA plugin which demangles Rust function names
  ☆28Updated 9 months ago
• shamrockhoax / mazedecoder
  ☆28Updated 4 years ago
• mrexodia / MiniDumpPlugin
  Simple x64dbg plugin to save a full memory dump
  ☆49Updated last year
• therealdreg / windbgtocstruct
  Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…
  ☆26Updated last year
• ergrelet / triton-bn
  Binary Ninja plugin that can be used to apply Triton's dead store eliminitation pass on basic blocks or functions.
  ☆56Updated 2 months ago
• BehroozAbbassi / sdkffi
  A code parser for C-Style header files that lets you to parse function's prototypes and data types used in their parameters.
  ☆93Updated 2 years ago
• nlykkei / llvm-ir-obfuscation
  Collection of obfuscation, tamper-proofing, and watermarking algorithms targeting LLVM IR.
  ☆71Updated 4 years ago
• 0x62797465 / lumina-binja-improved
  IDA's Lumina feature, reimplemented for Binary Ninja, with new error handeling!
  ☆35Updated 4 months ago
• Wack0 / DeltaDownloader
  Given delta compressed PE files, find download links for them on the Microsoft Symbol Server. No source PE file or VirusTotal access requ…
  ☆26Updated 7 months ago
• archercreat / api-tracer
  api-tracer is a tiny (useless) tracer
  ☆14Updated last year
• Air14 / SourceSync
  Set of plugins and library for dynamic pdb generation and synchronisation
  ☆31Updated 4 months ago
• ivellioscolin / pykd
  A pykd maintenance fork
  ☆26Updated last year
• IntroVirt / IntroVirt
  IntroVirt is an guest introspection library for KVM
  ☆49Updated 2 weeks ago
• vtil-project / VTIL-NativeLifters
  Lifting from native architecture to VTIL. (WIP)
  ☆70Updated 2 years ago
• shareef12 / libpdb
  Parser for Microsoft Program Database (PDB) files
  ☆74Updated 4 years ago
• repnz / windows-imports-searcher
  Support Windows OS Reversing by searching easily for references to functions across many DLLs
  ☆33Updated 2 years ago
• nccgroup / ICPin
  An Integrity-Check Monitoring Pintool
  ☆56Updated 3 years ago
• ergrelet / themida-spotter-bn
  A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.
  ☆62Updated last month
• rizinorg / sigdb
  Rizin FLIRT Signature Database
  ☆35Updated last year
• ajkhoury / pdbfetch
  Fetch PDB symbols directly from Microsoft's symbol servers
  ☆41Updated 2 years ago
• ehennenfent / binja_explain_instruction
  Adds a window to Binary Ninja that explains in simple-ish English what an instruction does
  ☆51Updated last year
• idiom / stackstack
  ☆30Updated 2 years ago
• sh4m2hwz / devirt_vmp
  devirtualization vmprotect
  ☆59Updated last year
• yardenshafir / InformationClasses
  Documenting system information classes and their uses
  ☆48Updated 2 years ago
• Mizari / phrank
  Tool that automates some useful structure routines in IDA PRO
  ☆70Updated 6 months ago
• ioncodes / kdbg-driver-vagrant
  ☆43Updated 2 years ago
• therealdreg / ida_vmware_windows_gdb
  Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)
  ☆57Updated last year