mmn3mm / peresources

Related projects ⓘ

Alternatives and complementary repositories for peresources

• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆130Updated 2 years ago
• karemfaisal / SMUC
  Simplified MITRE Use Cases, it describes the Attack and Detection
  ☆41Updated 4 years ago
• OALabs / PyIATRebuild
  Automatically rebuild Import Address Table for dumped PE file. With python bindings!
  ☆115Updated 5 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆202Updated 3 years ago
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆101Updated 4 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆84Updated 5 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆88Updated 5 years ago
• bootkitsbook / rootkits
  ☆103Updated 5 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 10 years ago
• myrtus0x0 / smoke_conf_extract
  ☆12Updated 2 years ago
• karttoon / binsequencer
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆74Updated 2 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆111Updated last year
• d00rt / emotet_network_protocol
  ☆81Updated 4 years ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆119Updated 7 years ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆241Updated last year
• PonyPC / myaut_contrib
  mod to myaut2exe decompiler
  ☆13Updated 7 years ago
• MAECProject / malware-behaviors
  A taxonomy and dictionary of malware behaviors.
  ☆42Updated 5 years ago
• OALabs / findyara-ida
  IDA python plugin to scan binary with Yara rules
  ☆171Updated 9 months ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆77Updated 4 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• AllsafeCyberSecurity / ghidra_scripts
  Ghidra scripts for malware analysis
  ☆90Updated 10 months ago
• 0ver-fl0w / ISFB_Tools
  List of tools to assist in analyzing samples of ISFB/Gozi/Ursnif
  ☆15Updated 5 years ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year