packing-box / docker-packing-boxLinks
Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection
☆60Updated last week
Alternatives and similar repositories for docker-packing-box
Users that are interested in docker-packing-box are comparing it to the libraries listed below
Sorting:
- Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes☆48Updated 11 months ago
- Dataset of packed PE samples☆39Updated last year
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆119Updated 8 months ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆74Updated 6 months ago
- Python implementation of the Packed Executable iDentifier (PEiD)☆143Updated last year
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆56Updated 10 months ago
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆118Updated 2 years ago
- ☆74Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆71Updated last year
- Ghidra scripts for recovering string definitions in Go binaries☆122Updated last year
- A feed of malware samples curated from threat intelligence sources.☆28Updated 2 years ago
- ☆109Updated 2 years ago
- Tools developed by the Zscaler ThreatLabz Threat Intelligence team☆87Updated last month
- Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff☆57Updated 2 months ago
- Ghidra plugin for https://analyze.intezer.com☆72Updated 3 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated 2 years ago
- Linpmem is a linux memory acquisition tool☆94Updated 4 months ago
- CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is a "mirror" -- p…☆134Updated 2 months ago
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆105Updated 5 months ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Powershell script deobfuscation using AST in Python☆72Updated last month
- API Logger for Windows Executables☆80Updated 5 years ago
- IDA Pro plugin to aid with the analysis of native IIS modules☆19Updated last year
- Scripts to aid analysis of files obfuscated with ScatterBee.☆24Updated 2 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆82Updated 3 years ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆57Updated 3 years ago
- Dataset of packed ELF samples☆21Updated 2 years ago
- Scripts to run within Ghidra, maintained by the Trellix ARC team☆122Updated 4 months ago
- ☆39Updated last year