nsacyber / BAM

Related projects ⓘ

Alternatives and complementary repositories for BAM

• NationalSecurityAgency / ghidra-data
  Supporting Data Archives for Ghidra
  ☆172Updated last week
• cmu-sei / kaiju
  CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- p…
  ☆125Updated last week
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆102Updated 2 years ago
• AllsafeCyberSecurity / ghidra_scripts
  Ghidra scripts for malware analysis
  ☆90Updated 10 months ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆259Updated 9 months ago
• unixfreaxjp / malwaremustdie
  repository of tools & resources of the MMD team
  ☆131Updated 2 years ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆393Updated last year
• Cisco-Talos / Ghidraaas
  ☆219Updated last year
• bootkitsbook / rootkits
  ☆103Updated 5 years ago
• nsacyber / Driver-Collider
  Blocks drivers from loading by using a name collision technique. #nsacyber
  ☆45Updated 6 years ago
• bootkitsbook / bootkits
  ☆61Updated 5 years ago
• netspooky / inhale
  A malware analysis and classification tool.
  ☆191Updated 2 years ago
• 0x6d696368 / ghidra_scripts
  Ghidra scripts such as a RC4 decrypter, Yara search, stack string decoder, etc.
  ☆157Updated 4 years ago
• carbonblack / binee
  Binee: binary emulation environment
  ☆503Updated last year
• ernw / Windows-Insight
  The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…
  ☆150Updated 4 years ago
• Qubasa / 0pack
  A novel technique to hide code from debuggers & disassemblers
  ☆152Updated 3 months ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆204Updated 3 years ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆319Updated 5 months ago
• nsacyber / Control-Flow-Integrity
  A proposed hardware-based method for stopping known memory corruption exploitation techniques. #nsacyber
  ☆153Updated 7 years ago
• microsoft / project-freta
  MSR Project Freta
  ☆76Updated 4 months ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆69Updated 2 years ago
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆234Updated last year
• D4stiny / PeaceMaker
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆417Updated 4 years ago
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆39Updated 2 weeks ago
• CERT-Polska / ursadb
  Trigram database written in C++, suited for malware indexing
  ☆123Updated last month
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆155Updated 10 months ago
• secrary / DrSemu
  DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
  ☆269Updated 5 years ago
• intezer / MoP
  MoP - "Master of Puppets" - Advanced malware tracking framework
  ☆82Updated 2 months ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆111Updated last year