Capa analysis importer for Ghidra.
☆64Dec 2, 2020Updated 5 years ago
Alternatives and similar repositories for CapaExplorer
Users that are interested in CapaExplorer are comparing it to the libraries listed below
Sorting:
- ☆73Sep 4, 2023Updated 2 years ago
- Import DynamoRIO drcov code coverage data into Ghidra☆44Dec 21, 2023Updated 2 years ago
- ☆16Apr 30, 2024Updated last year
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- bunch of random stuff☆21Apr 11, 2020Updated 5 years ago
- Function ID for Malware Analysis☆13Jul 6, 2020Updated 5 years ago
- Anything related to Ghidra☆12Apr 22, 2019Updated 6 years ago
- ☆64Apr 1, 2021Updated 4 years ago
- Extract annoations from Ghidra into an X32/X64 dbg database☆57Feb 24, 2021Updated 5 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆25May 29, 2023Updated 2 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58May 24, 2021Updated 4 years ago
- My collection of scripts for Ghidra (https://github.com/NationalSecurityAgency/ghidra)☆10Sep 13, 2020Updated 5 years ago
- GhidraQuark bridges Quark Engine into Ghidra☆39Mar 9, 2021Updated 4 years ago
- Generating YARA rules based on binary code☆220Oct 7, 2021Updated 4 years ago
- ☆15Jun 5, 2019Updated 6 years ago
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Aug 2, 2020Updated 5 years ago
- The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.☆56Dec 23, 2020Updated 5 years ago
- Yet another rule generator for Yara☆29Jun 6, 2025Updated 8 months ago
- A ready-made template for a project based on libpeconv.☆51Oct 31, 2025Updated 4 months ago
- Ghidra plugin for https://analyze.intezer.com☆72Oct 23, 2022Updated 3 years ago
- Very loud vBulletin exploit☆14Aug 12, 2020Updated 5 years ago
- The Multiplatform Linux Sandbox☆16Dec 19, 2023Updated 2 years ago
- UNMAINTAINED: I am now developing and using https://github.com/GhidraJupyter/ghidra-jupyter-kotlin instead, PRs still welcome☆16May 6, 2020Updated 5 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Jun 14, 2022Updated 3 years ago
- Various config files obtained during malware analysis☆67Oct 31, 2018Updated 7 years ago
- ☆76Nov 30, 2023Updated 2 years ago
- ☆17Feb 15, 2022Updated 4 years ago
- open source malware analysis and research notes dump☆26Aug 30, 2023Updated 2 years ago
- ☆93Feb 18, 2021Updated 5 years ago
- A Dockerized Ghidra Server☆15Jan 9, 2021Updated 5 years ago
- Simple yara rule manager☆67Dec 27, 2022Updated 3 years ago
- Ghidra scripts for malware analysis☆101Jan 11, 2024Updated 2 years ago
- Automatic YARA rule generation for Malpedia☆168Sep 8, 2022Updated 3 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆59Oct 5, 2025Updated 4 months ago
- Ghidra Extension to integrate BinDiff for function matching☆287Nov 2, 2025Updated 3 months ago
- Hacky scripts to fixup stack strings in Ghidra's decompiler.☆36May 22, 2022Updated 3 years ago
- Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centra…☆35Feb 1, 2022Updated 4 years ago
- A collection of anti disassembly techniques☆20Jul 22, 2017Updated 8 years ago
- My personal cheat sheet for the x64dbg python plugin.☆28Jun 6, 2020Updated 5 years ago