DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
☆280Nov 3, 2019Updated 6 years ago
Alternatives and similar repositories for DrSemu
Users that are interested in DrSemu are comparing it to the libraries listed below
Sorting:
- A function tracer☆92Jun 4, 2019Updated 6 years ago
- An open source script to perform malware static analysis on Portable Executable☆329May 23, 2023Updated 2 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆743Mar 17, 2019Updated 6 years ago
- User-mode part of Zerokit platform☆22Mar 30, 2019Updated 6 years ago
- Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)☆824Mar 10, 2022Updated 3 years ago
- A static analyzer for PE executables.☆1,107Updated this week
- Binee: binary emulation environment☆529Feb 25, 2023Updated 3 years ago
- Virtual Machine Introspection, Tracing & Debugging☆595Feb 22, 2022Updated 4 years ago
- A driver that hooks C: volume using symbolic link callback to track all FS access to the volume☆110Apr 24, 2020Updated 5 years ago
- Zerokit/GAPZ rootkit (non buildable and only for researching)☆185Mar 30, 2019Updated 6 years ago
- PeaceMaker Threat Detection is a Windows kernel-based application that detects advanced techniques used by malware.☆431May 22, 2020Updated 5 years ago
- idenLib - Library Function Identification [This project is not maintained anymore]☆396Mar 17, 2019Updated 6 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆28Mar 30, 2019Updated 6 years ago
- Malware Configuration And Payload Extraction☆761Nov 22, 2024Updated last year
- Drltrace is a library calls tracer for Windows and Linux applications.☆416Aug 16, 2020Updated 5 years ago
- Windows 10 UAC bypass PoC using LaunchInfSection☆35Aug 3, 2018Updated 7 years ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆463Nov 22, 2018Updated 7 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Oct 5, 2020Updated 5 years ago
- A comprehensive binary emulation and instrumentation platform.☆418Jan 31, 2023Updated 3 years ago
- Kernel driver to fuzz Hyper-V hypercalls☆136Feb 15, 2019Updated 7 years ago
- executing JS from x86 code☆27May 9, 2019Updated 6 years ago
- libemu shim layer and win32 environment for Unicorn Engine☆73Apr 14, 2017Updated 8 years ago
- Powershell script to exfiltrate large files quickly and securely☆125May 4, 2022Updated 3 years ago
- Pocs for Antivirus Software‘s Kernel Vulnerabilities☆266Jul 6, 2017Updated 8 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆477Apr 8, 2021Updated 4 years ago
- crauEmu is an uEmu extension for developing and analyzing payloads for code-reuse attacks☆111Dec 11, 2019Updated 6 years ago
- win10 pgContext dynamic dump (btc version)☆110Jan 15, 2020Updated 6 years ago
- InfectPE - Inject custom code into PE file [This project is not maintained anymore]☆328Apr 26, 2017Updated 8 years ago
- Kernel mode windows NT API logger☆22Sep 9, 2019Updated 6 years ago
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- A project that aims to automatically devirtualize code that has been virtualized using x86virt☆126Dec 3, 2022Updated 3 years ago
- EoP POC for CVE-2019-1132☆61Sep 8, 2019Updated 6 years ago
- DRAKVUF Black-box Binary Analysis☆1,208Feb 11, 2026Updated 2 weeks ago
- Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engin…☆303Sep 16, 2022Updated 3 years ago
- Analysis and Modification Tool for Executables☆17Mar 28, 2019Updated 6 years ago
- Live hunting of code injection techniques☆385Aug 22, 2019Updated 6 years ago
- Utilities for Sysmon☆1,574Sep 21, 2025Updated 5 months ago
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆216Sep 17, 2019Updated 6 years ago
- Karta - source code assisted fast binary matching plugin for IDA☆901May 13, 2023Updated 2 years ago