nazywam / AutoIt-Ripper
Extract AutoIt scripts embedded in PE binaries
☆175Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for AutoIt-Ripper
- Official VirusTotal plugin for IDA Pro☆155Updated 10 months ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆241Updated last year
- FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis☆156Updated last week
- Debug Child Process Tool (auto attach)☆271Updated last year
- Generating YARA rules based on binary code☆203Updated 3 years ago
- ☆100Updated last year
- IDA python plugin to scan binary with Yara rules☆171Updated 9 months ago
- Dynamic unpacker based on PE-sieve☆658Updated 8 months ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆196Updated 2 years ago
- Malware dynamic instrumentation tool based on frida framework☆101Updated 4 years ago
- Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)☆223Updated last month
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆178Updated 4 years ago
- capemon: CAPE's monitor☆102Updated last week
- An IDA Pro extension for easier (malware) reverse engineering☆110Updated 2 years ago
- Robust Automated Malware Unpacker☆84Updated last year
- A simple C# executable that invokes an arbitrary method of an arbitrary C# DLL☆129Updated 7 months ago
- Script analysis tool based on Frida.re☆128Updated 7 years ago
- Automatic YARA rule generation for Malpedia☆155Updated 2 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆73Updated 10 years ago
- Parsers for custom malware formats ("Funky malware formats")☆92Updated 2 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆131Updated 2 years ago
- HashDB API hash lookup plugin for IDA Pro☆296Updated last month
- Quickly debug shellcode extracted during malware analysis☆565Updated last year
- c2 traffic☆188Updated last year
- Powershell script deobfuscation using AST in Python☆62Updated 10 months ago
- An automatic unpacker and logger for DotNet Framework targeting files☆249Updated last year
- Parse .NET executable files.☆74Updated last week
- Community modules for CAPE Sandbox☆86Updated this week
- Frida.re based RunPE (and MapViewOfSection) extraction tool☆111Updated 7 years ago