packing-box / docker-packing-boxLinks
Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection
☆62Updated 2 weeks ago
Alternatives and similar repositories for docker-packing-box
Users that are interested in docker-packing-box are comparing it to the libraries listed below
Sorting:
- Dataset of packed PE samples☆41Updated last year
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆46Updated last year
- General malware analysis stuff☆37Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- A feed of malware samples curated from threat intelligence sources.☆28Updated 2 years ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆76Updated 7 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆71Updated last year
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆57Updated last year
- Powershell script deobfuscation using AST in Python☆72Updated 3 months ago
- Scripts to run within Ghidra, maintained by the Trellix ARC team☆123Updated 5 months ago
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆106Updated 6 months ago
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆119Updated 9 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated 2 years ago
- Tools developed by the Zscaler ThreatLabz Threat Intelligence team☆90Updated 3 weeks ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆118Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- Linpmem is a linux memory acquisition tool☆95Updated 6 months ago
- Python implementation of the Packed Executable iDentifier (PEiD)☆143Updated last year
- Ghidra plugin for https://analyze.intezer.com☆72Updated 3 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- ☆110Updated 3 years ago
- Ghidra scripts for recovering string definitions in Go binaries☆125Updated last month
- Code for the paper "EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis"☆38Updated 2 years ago
- This repository contains relevant samples and data related to the ELF Malware Analysis 101 articles☆48Updated 3 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Updated 2 years ago
- Batch script to compile a binary shellcode blob into an exe file☆88Updated 6 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆170Updated last month
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆57Updated 3 years ago
- ☆39Updated last year
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆57Updated 3 months ago