phdphuc / mac-a-malLinks
The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.
☆85Updated 6 years ago
Alternatives and similar repositories for mac-a-mal
Users that are interested in mac-a-mal are comparing it to the libraries listed below
Sorting:
- The current repository contains all the scripts needed to complement kernel-mode mac-a-mal malicious activity hooking on macOS to Cuckoo …☆50Updated 7 years ago
- This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)☆23Updated 9 years ago
- A set of scripts for a radare-based malware code analysis workflow☆67Updated 6 years ago
- ☆52Updated 6 years ago
- Yet Another YARA rule Generator☆64Updated 6 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Updated 6 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 8 years ago
- ☆43Updated 6 years ago
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆110Updated 5 years ago
- Frida.re based RunPE (and MapViewOfSection) extraction tool☆113Updated 8 years ago
- Hansel - a simple but flexible search for IDA☆26Updated 6 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- a collection of yara rules for binary analysis☆24Updated 8 years ago
- ☆28Updated 10 years ago
- monitor macOS for malicious activity☆236Updated 6 months ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34Updated 6 years ago
- The grey fox☆25Updated 9 years ago
- IDATACO IDA Pro Plugin☆47Updated 9 years ago
- ☆99Updated last year
- Talk and materials for Offensive Con presentation - Privileged Helper Tools☆47Updated 6 years ago
- Framework to automatically test and explore the capabilities of generic AV engines☆69Updated 6 years ago
- IDA plugin for reverse-engineering and dynamic interactions with the Binsec platform☆116Updated 7 years ago
- Memory inspection REPL interface☆45Updated 7 years ago
- IDARay is an IDA Pro plugin that matches the database against multiple YARA files which themselves may contain multiple rules.☆18Updated 6 years ago
- Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.☆95Updated 3 years ago
- ☆66Updated 2 years ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"☆27Updated 6 years ago
- Imports MSDN documentation into IDA Pro☆51Updated 13 years ago
- ☆44Updated 8 years ago