poona / APIMiner

Related projects ⓘ

Alternatives and complementary repositories for APIMiner

• hasherezade / mal_unpack_drv
  MalUnpack companion driver
  ☆92Updated 5 months ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆89Updated 3 years ago
• OALabs / trashdbg
  TrashDBG the world's worse debugger
  ☆24Updated 2 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆141Updated 9 months ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆48Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• hasherezade / antianalysis_demos
  Set of antianalysis techniques found in malware
  ☆129Updated last year
• pan-unit42 / dotnetfile
  ☆100Updated last year
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆114Updated last year
• alexey-kleymenov / reverse_engineering_tools
  Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.
  ☆98Updated last year
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆47Updated 11 months ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• albertzsigovits / flare-on-challenges
  Write-ups for FireEye's FLARE-On challenges
  ☆25Updated 5 years ago
• cdong1012 / IDAPython-Malware-Scripts
  ☆66Updated 11 months ago
• edygert / runsc
  runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…
  ☆36Updated last year
• uf0o / rootkit-arsenal-guacamole
  An attempt to restore and adapt to modern Win10 version the 'Rootkit Arsenal' original code samples
  ☆66Updated 2 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆111Updated last year
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆124Updated 11 months ago
• jk45054 / CTF-writeups
  Writeups for CTF challenges
  ☆30Updated last year
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆67Updated last year
• n1ght-w0lf / HawkEye
  Malware dynamic instrumentation tool based on frida framework
  ☆101Updated 4 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆24Updated 2 years ago
• ashemery / malware4edu
  Malware Samples that could be used for teaching students about malware analysis.
  ☆47Updated 7 months ago
• repnz / shellcode2exe
  Batch script to compile a binary shellcode blob into an exe file
  ☆81Updated 5 years ago
• redcanaryco / exploit-primitive-playground
  ☆59Updated 4 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆110Updated 4 months ago
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated last year