Extract AutoIt scripts embedded in PE binaries
☆216Jul 15, 2024Updated last year
Alternatives and similar repositories for AutoIt-Ripper
Users that are interested in AutoIt-Ripper are comparing it to the libraries listed below
Sorting:
- myAut2Exe - The Open Source AutoIT Script Decompiler☆84Jan 26, 2018Updated 8 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆741Aug 18, 2025Updated 6 months ago
- Malduck is your ducky companion in malware analysis journeys☆349Jun 22, 2025Updated 8 months ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- Generate Mimikatz Golden Ticket commands with ease!☆51Dec 4, 2020Updated 5 years ago
- AutoIt scripting language support for Visual Studio☆11Dec 21, 2025Updated 2 months ago
- Simple as possible tool to extract almost every AutoIT script from compiled programs, even firmly secured. Please check the README.md to …☆56Feb 11, 2024Updated 2 years ago
- Dynamic unpacker based on PE-sieve☆796Sep 13, 2025Updated 5 months ago
- AutoIt Extractor transferred to GitHub☆59Jul 18, 2022Updated 3 years ago
- ☆115Feb 13, 2026Updated 2 weeks ago
- ☆35Jan 13, 2026Updated last month
- ☆16Apr 30, 2024Updated last year
- A C# AutoIt interpreter designed to be platform-independent☆36May 4, 2024Updated last year
- A library and cli tool to extract HWP files.☆30Dec 1, 2025Updated 3 months ago
- A tool for detecting VBA stomping.☆101Aug 4, 2022Updated 3 years ago
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated 3 weeks ago
- Kaspersky's GReAT KLara☆732Jul 24, 2024Updated last year
- Easy way to create a MISP event related to a Phishing page☆17May 31, 2023Updated 2 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,562Oct 31, 2025Updated 4 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,118Jul 10, 2024Updated last year
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆262Mar 27, 2023Updated 2 years ago
- POC for IAT Parsing Payloads☆48Jan 1, 2017Updated 9 years ago
- A set of tools for collecting forensic information☆27Apr 4, 2020Updated 5 years ago
- Emu-strings project - JScript/VBScript automated dropper analysis system☆18Mar 25, 2021Updated 4 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Mar 11, 2025Updated 11 months ago
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,266Feb 20, 2026Updated last week
- Windows kernel and user mode emulation.☆1,860Updated this week
- Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)☆447Feb 24, 2022Updated 4 years ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,897Updated this week
- Identifies metadata of .NET binary files.☆21Apr 3, 2024Updated last year
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- Chromium Embedded Framework for AutoIt3☆28Oct 17, 2019Updated 6 years ago
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 3 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Nov 27, 2020Updated 5 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆171Feb 5, 2026Updated 3 weeks ago
- reverse engineering extension plugin for windbg☆121Sep 30, 2019Updated 6 years ago
- IDA script for vmprotect Windows Api address decoder☆54Jun 8, 2021Updated 4 years ago