Alternatives and similar repositories for peresources

Users that are interested in peresources are comparing it to the libraries listed below

• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 4 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆38Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• myrtus0x0 / smoke_conf_extract
  ☆13Updated 2 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆75Updated 10 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆85Updated 6 years ago
• karttoon / binsequencer
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆76Updated 3 years ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆119Updated 6 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆249Updated 2 years ago
• MAECProject / malware-behaviors
  A taxonomy and dictionary of malware behaviors.
  ☆42Updated 5 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆137Updated 2 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆78Updated 4 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆115Updated 2 years ago
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆123Updated 5 years ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated 2 years ago
• spender-sandbox / cuckoomon-modified
  Modified edition of cuckoomon
  ☆49Updated 7 years ago
• karemfaisal / SMUC
  Simplified MITRE Use Cases, it describes the Attack and Detection
  ☆45Updated 4 years ago
• d00rt / emotet_network_protocol
  ☆82Updated 5 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆91Updated 6 years ago
• danielplohmann / idascope
  An IDA Pro extension for easier (malware) reverse engineering
  ☆115Updated 2 years ago
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆105Updated 5 years ago
• OALabs / frida-extract
  Frida.re based RunPE (and MapViewOfSection) extraction tool
  ☆112Updated 8 years ago
• sysopfb / Malware_Scripts
  Various scripts for different malware families
  ☆106Updated 4 years ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆210Updated 3 years ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆173Updated last year
• pan-unit42 / dotnetfile
  ☆104Updated last year
• fboldewin / COM-Code-Helper
  Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code
  ☆183Updated 4 years ago
• bootkitsbook / rootkits
  ☆106Updated 6 years ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆51Updated last year