nsacyber / BAM

Related projects: ⓘ

• NationalSecurityAgency / ghidra-data
  Supporting Data Archives for Ghidra
  ☆170Updated last week
• AllsafeCyberSecurity / ghidra_scripts
  Ghidra scripts for malware analysis
  ☆84Updated 8 months ago
• bootkitsbook / bootkits
  ☆60Updated 5 years ago
• google / vxsig
  Automatically generate AV byte signatures from sets of similar binaries.
  ☆256Updated 7 months ago
• netspooky / inhale
  A malware analysis and classification tool.
  ☆193Updated 2 years ago
• microsoft / project-freta
  MSR Project Freta
  ☆76Updated last month
• trendmicro / telfhash
  Symbol hash for ELF files
  ☆100Updated 2 years ago
• bootkitsbook / rootkits
  ☆104Updated 5 years ago
• nmantani / FileInsight-plugins
  FileInsight-plugins: decoding toolbox of McAfee FileInsight hex editor for malware analysis
  ☆155Updated last month
• unixfreaxjp / malwaremustdie
  repository of tools & resources of the MMD team
  ☆131Updated 2 years ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆198Updated 2 years ago
• fireeye / BitsParser
  ☆137Updated 3 months ago
• D4stiny / PeaceMaker
  PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.
  ☆411Updated 4 years ago
• intezer / analyze-community-ghidra-plugin
  Ghidra plugin for https://analyze.intezer.com
  ☆69Updated last year
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆110Updated last year
• intezer / MoP
  MoP - "Master of Puppets" - Advanced malware tracking framework
  ☆82Updated 2 weeks ago
• decalage2 / balbuzard
  Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain na…
  ☆129Updated 4 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• cmu-sei / kaiju
  CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- p…
  ☆124Updated 2 months ago
• arieljt / VTCodeSimilarity-YaraGen
  ☆95Updated 3 years ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆195Updated 2 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆128Updated last year
• itsKindred / malware-analysis-writeups
  ☆140Updated this week
• secrary / DrSemu
  DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
  ☆266Updated 4 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆239Updated last year
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆139Updated 7 months ago
• ernw / Windows-Insight
  The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…
  ☆150Updated 4 years ago
• mandiant / Vulnerability-Disclosures
  ☆183Updated 2 weeks ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆154Updated 8 months ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year