packing-box / awesome-executable-packing
A curated list of awesome resources related to executable packing
☆1,209Updated last week
Related projects ⓘ
Alternatives and complementary repositories for awesome-executable-packing
- A Pin Tool for tracing API calls etc☆1,304Updated this week
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,285Updated 5 months ago
- Linker/Compiler/Tool detector for Windows, Linux and MacOS.☆526Updated this week
- PE-bear (builds only)☆770Updated last year
- PE file viewer/editor for Windows, Linux and MacOS.☆992Updated this week
- An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…☆750Updated 9 months ago
- Some of my publicly available Malware analysis and Reverse engineering.☆762Updated 5 months ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,037Updated 2 weeks ago
- Dynamic unpacker based on PE-sieve☆658Updated 8 months ago
- Windows kernel and user mode emulation.☆1,520Updated 7 months ago
- A curated list of awesome Ghidra materials☆1,174Updated 3 years ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆659Updated last month
- Windows process injection methods☆143Updated last year
- State-of-the-art native debugging tools☆2,931Updated this week
- Windows Object Explorer 64-bit☆1,649Updated last month
- Portable Executable parsing library (from PE-bear)☆647Updated 2 months ago
- The FLARE team's open-source extension to add Python 3 scripting to Ghidra.☆701Updated 6 months ago
- A Trace Explorer for Reverse Engineers☆1,328Updated last year
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,110Updated 2 weeks ago
- Binary Ninja plugin to identify obfuscated code and other interesting code constructs☆576Updated 6 months ago
- ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja…☆2,042Updated 8 months ago
- windows kernel security development☆1,957Updated 2 years ago
- Collection of various malicious functionality to aid in malware development☆1,500Updated 8 months ago
- x64 Dynamic Reverse Engineering Toolkit☆600Updated last year
- Assortment of hashing algorithms used in malware☆334Updated 5 months ago
- A Binary Genetic Traits Lexer Framework☆393Updated last year
- Native API header files for the System Informer project.☆1,050Updated 2 months ago
- A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl☆1,121Updated 3 weeks ago
- Internals information about Hyper-V☆661Updated 2 months ago