Golang port of pefile
☆25Jul 17, 2017Updated 8 years ago
Alternatives and similar repositories for pefile-go
Users that are interested in pefile-go are comparing it to the libraries listed below
Sorting:
- Simple x64dbg plugin to show registers on every step.☆16Jul 27, 2019Updated 6 years ago
- v1版完成对PE头,区段,输入表的解析☆11Apr 16, 2018Updated 7 years ago
- Python command-line tool that uses nearest neighbor search methods for malware similarity analysis☆16Jan 29, 2019Updated 7 years ago
- ssdeep for python on windows☆19Feb 7, 2026Updated last month
- MalwareDB main project repo.☆16Feb 28, 2021Updated 5 years ago
- Volatility plugin to validate Authenticode-signed processes, either with embedded signature or catalog-signed☆20Jun 13, 2023Updated 2 years ago
- A Dockerized Ghidra Server☆15Jan 9, 2021Updated 5 years ago
- PE Import Hash Generator☆79Jul 17, 2017Updated 8 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- Automatic Malware Signature Generation Tool☆16Oct 13, 2021Updated 4 years ago
- ☆24Aug 30, 2019Updated 6 years ago
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 5 months ago
- revised "peHash: A Novel Approach to Fast Malware Clustering"☆21Jul 13, 2016Updated 9 years ago
- Network detector for Winnti malware☆21Mar 6, 2018Updated 8 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆28Mar 30, 2019Updated 6 years ago
- ☆23Jul 7, 2023Updated 2 years ago
- Some basics on how to get started with Ghdira Scripting☆26Nov 11, 2025Updated 3 months ago
- A Ghidra script to export data to a x64dbg database☆37Jan 6, 2023Updated 3 years ago
- Inject and detour DLLs and program functions both managed and unmanaged in other programs, written (almost) purely in C#. [Not maintained…☆37Jan 20, 2014Updated 12 years ago
- Use Ghidra Structs in Python☆30Mar 28, 2021Updated 4 years ago
- VDA Labs scripts for the GHIDRA reverse engineering toolset☆29Mar 8, 2019Updated 7 years ago
- Golang parser for OLE files☆33Dec 4, 2025Updated 3 months ago
- Example of hijacking system calls via function pointer tables☆31Jun 26, 2021Updated 4 years ago
- Plugin to patch and remove ASLR from PE files on x64dbg☆39Sep 23, 2022Updated 3 years ago
- File integrity monitor with malware detection using machine learning☆14May 23, 2024Updated last year
- A better alternative to RunDLL32☆35Jun 11, 2019Updated 6 years ago
- NO WriteProcessMemory CreateRemoteThread APIs call shellcode injection☆31Apr 8, 2020Updated 5 years ago
- ☆30Nov 8, 2017Updated 8 years ago
- ☆12Aug 4, 2018Updated 7 years ago
- The Code implements the following: => Storing a file => Retrieving a file. Key Technologies used are PHP,HTML 5☆12Feb 5, 2023Updated 3 years ago
- Hacky scripts to fixup stack strings in Ghidra's decompiler.☆36May 22, 2022Updated 3 years ago
- APISearch Plugin (x64) - A Plugin For x64dbg☆43Jul 17, 2018Updated 7 years ago
- A clone of FD (File & Directory tool) by T.Shirai☆16Jan 29, 2014Updated 12 years ago
- Primarily aimed at replicating files that cannot be directly copied due to being in use.☆11Apr 22, 2024Updated last year
- This project attempts to classify the entries in the Microsoft Malware Classification Challenge dataset using random forests.☆11Dec 22, 2016Updated 9 years ago
- Python Telegraph api.☆15Mar 22, 2025Updated 11 months ago
- Pipeleek scans CI/CD logs and artifacts to detect leaked secrets and pivot from them☆19Updated this week
- Minimal C port of UTF8-CPP☆12Jun 2, 2019Updated 6 years ago
- A memory engine that scans, debugs and disassembles an applications memory space.☆14Oct 29, 2017Updated 8 years ago