repnz / shellcode2exe
Batch script to compile a binary shellcode blob into an exe file
☆80Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for shellcode2exe
- Small visualizator for PE files☆67Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆113Updated last year
- An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…☆109Updated 3 months ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆124Updated 11 months ago
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆73Updated 3 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- Use YARA rules on Time Travel Debugging traces☆85Updated last year
- Malware Configuration Extraction Modules☆47Updated 11 months ago
- Compile shellcode into an exe file from Windows or Linux.☆58Updated 3 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- Detect strange memory regions and DLLs☆168Updated 2 years ago
- Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …☆89Updated 3 years ago
- ☆66Updated 11 months ago
- Recon 2023 slides and code☆78Updated last year
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆98Updated last year
- Rogue Assembly Hunter is a utility for discovering 'interesting' .NET CLR modules in running processes.☆115Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 2 years ago
- Native Python3 bindings for @horsicq's Detect-It-Easy☆48Updated last week
- Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.☆70Updated 3 years ago
- Winbindex bot to pull in binaries for specific releases☆46Updated last year
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…�☆36Updated last year
- a PE Loader and Windows API tracer. Useful in malware analysis.☆137Updated 2 years ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆193Updated last year
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆124Updated 3 months ago
- Finding secrets in kernel and user memory☆113Updated last year
- A golang CLI tool to download malware from a variety of sources.☆141Updated 9 months ago
- A collection of modules and scripts to help with analyzing Nim binaries☆66Updated last month
- Experiment on reproducing Obfuscate & Sleep☆138Updated 3 years ago
- Powershell script deobfuscation using AST in Python☆61Updated 10 months ago
- ☆22Updated 5 months ago