mrexodia / dumpulator
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
☆781Updated last year
Alternatives and similar repositories for dumpulator:
Users that are interested in dumpulator are comparing it to the libraries listed below
- Time Travel Debugging IDA plugin☆570Updated 8 months ago
- A Pin Tool for tracing API calls etc☆1,392Updated last month
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆681Updated 5 months ago
- Dynamic unpacker based on PE-sieve☆709Updated last month
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆587Updated 10 months ago
- A private Lumina server for IDA Pro☆964Updated 4 months ago
- An integration for IDA and VS Code which connects both to easily execute and debug IDAPython scripts.☆780Updated last month
- HashDB API hash lookup plugin for IDA Pro☆308Updated 4 months ago
- A collection of x64dbg scripts. Feel free to submit a pull request to add your script.☆512Updated 8 months ago
- A Binary Genetic Traits Lexer Framework☆486Updated 2 weeks ago
- Official x64dbg plugin for IDA Pro.☆486Updated 5 months ago
- Assortment of hashing algorithms used in malware☆348Updated last week
- Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…☆543Updated last month
- The FLARE team's open-source extension to add Python 3 scripting to Ghidra.☆730Updated 10 months ago
- IDAPython tool for creating automatic C++ virtual tables in IDA Pro☆1,305Updated 3 years ago
- Yet Another Ghidra Integration for IDA☆499Updated 6 months ago
- IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformati…☆997Updated this week
- XNTSV program for detailed viewing of system structures for Windows.☆456Updated this week
- A dynamic VMP dumper and import fixer, powered by VTIL.☆1,204Updated 4 years ago
- Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.☆826Updated 10 months ago
- gooMBA is a Hex-Rays Decompiler plugin to simplify Mixed Boolean-Arithmetic (MBA) expressions☆602Updated last year
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,345Updated 9 months ago
- IDA Pro plugin that implements more user-friendly register and stack views☆634Updated 3 months ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,182Updated last week
- Windows kernel and user mode emulation.☆1,607Updated last week
- Playing with the VMProtect software protection. Automatic deobfuscation of pure functions using symbolic execution and LLVM.☆1,216Updated 2 years ago
- An interactive list of plugins for hex-rays' IDA Pro☆418Updated 3 months ago
- Titan is a VMProtect devirtualizer☆15Updated last year
- ☆823Updated 4 months ago
- A Trace Explorer for Reverse Engineers☆1,371Updated last year