ralphje / signify

Related projects ⓘ

Alternatives and complementary repositories for signify

• trailofbits / uthenticode
  A cross-platform library for verifying Authenticode signatures
  ☆139Updated 3 weeks ago
• goretk / pygore
  pyGoRE - Python library for analyzing Go binaries
  ☆64Updated 2 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆67Updated 2 years ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆102Updated last week
• avast / yaramod
  Parsing of YARA rules into AST and building new rulesets in C++.
  ☆120Updated 3 weeks ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆18Updated last month
• williballenthin / python-dotnet-binaryformat
  Pure Python parser for data encoded by .NET's BinaryFormatter
  ☆49Updated 6 years ago
• stoerchl / yara_zip_module
  ☆13Updated 2 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆50Updated 2 years ago
• libyal / libmdmp
  Library and tools to access the Windows Minidump (MDMP) format
  ☆38Updated 4 months ago
• angelkillah / zer0m0n
  zer0m0n driver for cuckoo sandbox
  ☆87Updated 8 years ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆43Updated last year
• Velocidex / oleparse
  Golang parser for OLE files
  ☆31Updated 5 months ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆16Updated 4 years ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆67Updated 4 years ago
• c3rb3ru5d3d53c / karton-unpacker
  A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.
  ☆51Updated 3 years ago
• zodiacon / ALPCLogger
  Log ALPC activity
  ☆80Updated last year
• tyranid / DumpReparsePoints
  This is a simple tool to dump all the reparse points on an NTFS volume.
  ☆31Updated 4 years ago
• avast / yls
  YARA Language Server
  ☆68Updated this week
• eset / vulnerability-disclosures
  Repository of vulnerabilities disclosed by ESET
  ☆27Updated 2 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆95Updated 5 years ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆62Updated 3 years ago
• avast / pe_tools
  A cross-platform Python toolkit for parsing/writing PE files.
  ☆63Updated 5 months ago
• HexHive / malWASH
  ☆112Updated 8 years ago
• glmcdona / binary2strings
  Python module to extract Ascii, Utf8, and Unicode strings from binary data. Lightning fast wrapper around c++ compiled code.
  ☆52Updated 7 months ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆41Updated 2 years ago
• intel471 / coderex
  A tool that automates regex generation for the x86 and x86-64 instruction sets
  ☆62Updated 7 months ago
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆16Updated 8 months ago
• aking1012 / dc20
  A slightly stripped down version of RID (an exercise in learning python C-Types...some of it is a little rushed/sloppy) and a stripped do…
  ☆52Updated 12 years ago