n1ght-w0lf / UchihashLinks
A small utility to deal with malware embedded hashes.
☆51Updated last year
Alternatives and similar repositories for Uchihash
Users that are interested in Uchihash are comparing it to the libraries listed below
Sorting:
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Malware Configuration Extraction Modules☆50Updated last year
- A collection of shellcode hashes☆17Updated 6 years ago
- Small visualizator for PE files☆69Updated last year
- ☆22Updated last year
- Go Lang Portable Executable Parser☆38Updated 4 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 8 months ago
- ☆23Updated 4 years ago
- Community Detection Signature Build and Distribution Pipeline for YARA, Suricata, Snort and Sigma☆28Updated last year
- Recreating and reviewing the Windows persistence methods☆38Updated 3 years ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- ☆73Updated last year
- WIP Emotet Control Flow Unflattening using miasm and radare2☆23Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated last year
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- ☆15Updated 3 years ago
- Lazarus analysis tools and research report☆56Updated last year
- ☆14Updated 2 years ago
- TrashDBG the world's worse debugger☆23Updated 3 years ago
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆36Updated 2 years ago
- Reads and prints information from the website MalAPI.io☆19Updated 2 years ago
- A repository where I share my injection implemintations☆29Updated 4 years ago
- C# implementation to produce ROR-13 numeric hash for given function API name☆32Updated 6 years ago
- Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.☆73Updated 4 years ago
- Radare2 Metadata Extraction to Elasticsearch☆22Updated last year
- Scripts to aid analysis of files obfuscated with ScatterBee.☆20Updated 2 years ago
- ☆34Updated 2 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 4 years ago