Alternatives and similar repositories for smoke_conf_extract:

Users that are interested in smoke_conf_extract are comparing it to the libraries listed below

• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• OALabs / UnpacMe-IDA-Byte-Search
  UnpacMe IDA Byte Search
  ☆28Updated last year
• pan-unit42 / dotnetfile
  ☆105Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 4 years ago
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆49Updated last year
• Dump-GUY / ghidra_scripts
  ☆71Updated last year
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 2 years ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆31Updated last year
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆70Updated last year
• danielplohmann / mcrit
  The MinHash-based Code Relationship & Investigation Toolkit (MCRIT) is a framework created to simplify the application of the MinHash alg…
  ☆91Updated last month
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆96Updated 3 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated 2 years ago
• danielplohmann / docker-mcrit
  Dockerized Setup for the MinHash-based Code Recognition & Investigation Toolkit (MCRIT)
  ☆16Updated last month
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆81Updated 2 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆44Updated 2 years ago
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆25Updated 3 years ago
• benoitsevens / applying-ttd-to-malware-analysis
  Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
  ☆40Updated 5 years ago
• idiom / stackstack
  ☆31Updated 2 years ago
• PonyPC / myaut_contrib
  mod to myaut2exe decompiler
  ☆14Updated 7 years ago
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 2 months ago
• rivitna / APT
  ☆14Updated 2 years ago
• OALabs / flare-vm
  ☆14Updated 2 years ago
• SouhailHammou / IDARay-Plugin
  IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.
  ☆18Updated 6 years ago
• nao-sec / rr_decoder
  Royal Road RTF Weaponizer object decoder
  ☆24Updated 6 months ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆64Updated 3 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆73Updated last year
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆88Updated last year
• g-les / floss2yar
  ☆15Updated 2 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆75Updated 10 years ago