pygrum / siphon

Related projects: ⓘ

• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆31Updated last year
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆40Updated 2 weeks ago
• hasherezade / flareon2023
  ☆25Updated 10 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• DissectMalware / yaradbg-frontend
  ☆36Updated 7 months ago
• naksyn / talks
  Repo containing my public talks
  ☆22Updated last year
• therealdreg / okhi
  Open Keylogger Hardware Implant - USB & PS2 Keyboards
  ☆50Updated last week
• OALabs / hashdb-ghidra
  Ghidra plugin for HashDB
  ☆19Updated 11 months ago
• PwCUK-CTO / iis-helper-plugin
  IDA Pro plugin to aid with the analysis of native IIS modules
  ☆13Updated last month
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆30Updated 2 years ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆51Updated 2 weeks ago
• realoriginal / blacklotus
  A attempt at replicating BLACKLOTUS capabilities, whilst not acting as a direct mimic.
  ☆81Updated last year
• RussianPanda95 / IDAPython
  IDA Python scripts
  ☆26Updated 8 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆105Updated 2 months ago
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆23Updated 2 years ago
• hasherezade / pe2pic
  Small visualizator for PE files
  ☆66Updated 11 months ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆38Updated last year
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆13Updated 7 months ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆80Updated last year
• FarghlyMal / Config-Extractors
  ☆26Updated last month
• jeFF0Falltrades / rat_king_parser
  A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …
  ☆29Updated last month
• xalicex / kernel-debug-lab-for-virtual-box
  How to set up 2 VirtualBox VM to debug kernel driver using windbg
  ☆50Updated 2 years ago
• hasherezade / flareon2022
  ☆28Updated last year
• NtQuerySystemInformation / Malware-RE-papers
  Here are some of my malware reversing papers that I will be publishing
  ☆30Updated 2 years ago
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆24Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆61Updated 5 months ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆35Updated 3 weeks ago
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆49Updated 11 months ago
• dr4k0nia / Greenline
  Unpacker and Config Extractor for managed Redline Stealer payloads
  ☆36Updated last year
• cyberark / malware-research
  ☆33Updated last year