DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
☆279Nov 3, 2019Updated 6 years ago
Alternatives and similar repositories for DrSemu
Users that are interested in DrSemu are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An open source script to perform malware static analysis on Portable Executable☆331May 23, 2023Updated 3 years ago
- A function tracer☆92Jun 4, 2019Updated 7 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 7 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆827Mar 10, 2022Updated 4 years ago
- User-mode part of Zerokit platform☆23Mar 30, 2019Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A static analyzer for PE executables.☆1,124Mar 11, 2026Updated 3 months ago
- findLoop - find possible encryption/decryption or compression/decompression code☆29Mar 30, 2019Updated 7 years ago
- Virtual Machine Introspection, Tracing & Debugging☆598Feb 22, 2022Updated 4 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆108Apr 24, 2020Updated 6 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆138Feb 15, 2019Updated 7 years ago
- idenLib - Library Function Identification [This project is not maintained anymore]☆394Mar 17, 2019Updated 7 years ago
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆431May 22, 2020Updated 6 years ago
- executing JS from x86 code☆27May 9, 2019Updated 7 years ago
- Binee: binary emulation environment☆532Feb 25, 2023Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆184Mar 30, 2019Updated 7 years ago
- Malware Configuration And Payload Extraction☆760Nov 22, 2024Updated last year
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆462Nov 22, 2018Updated 7 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆128Dec 3, 2022Updated 3 years ago
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆265Jul 6, 2017Updated 8 years ago
- A comprehensive binary emulation and instrumentation platform.☆419Jan 31, 2023Updated 3 years ago
- Drltrace is a library calls tracer for Windows and Linux applications.☆415Aug 16, 2020Updated 5 years ago
- Analysis and Modification Tool for Executables☆18Mar 28, 2019Updated 7 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆73Apr 14, 2017Updated 9 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆112Dec 11, 2019Updated 6 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Aug 3, 2018Updated 7 years ago
- A branch-monitor-based solution for process monitoring.☆138Feb 9, 2020Updated 6 years ago
- EoP POC for CVE-2019-1132☆61Sep 8, 2019Updated 6 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆439Aug 22, 2018Updated 7 years ago
- DRAKVUF Black-box Binary Analysis☆1,235May 24, 2026Updated 2 weeks ago
- Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engin…☆303Sep 16, 2022Updated 3 years ago
- Reverse engineering toolkit for exploit/malware analysis☆35May 10, 2020Updated 6 years ago
- Fuzzer for finding Open Mail Relays☆14May 16, 2026Updated 3 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Oct 5, 2020Updated 5 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆325Apr 26, 2017Updated 9 years ago
- BASS - BASS Automated Signature Synthesizer☆179Sep 19, 2018Updated 7 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆478Apr 8, 2021Updated 5 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆83Feb 18, 2023Updated 3 years ago
- Live hunting of code injection techniques☆388Aug 22, 2019Updated 6 years ago
- Process reimaging proof of concept code☆95Jun 21, 2019Updated 6 years ago