seekbytes / MicroSCOPELinks
Static analysis tool that detects potential ransomware in PE and ELF files through heuristic analysis
☆18Updated last year
Alternatives and similar repositories for MicroSCOPE
Users that are interested in MicroSCOPE are comparing it to the libraries listed below
Sorting:
- Helper scripts for windows debugging with symbols for Bochs and IDA Pro (PDB files). Very handy for user mode <--> kernel mode☆19Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆27Updated 3 years ago
- Collaboration platform for reverse engineering tools.☆43Updated 9 months ago
- A Windows API hooking library !☆32Updated 3 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆62Updated last year
- A driver to implement IOCTL hooking☆24Updated 3 years ago
- ☆15Updated 2 years ago
- Lightweight x86-64 disassembling library☆43Updated 3 years ago
- A Linux x86/x86-64 tool to trace registers and memory regions.☆39Updated 3 years ago
- Windows kernel driver template for cmkr and llvm-msvc.☆35Updated last year
- Taking advantage of CRT initialization, to get away with hooking protected applications☆47Updated 2 years ago
- LLDB based debugger for Linux Kernel☆26Updated 5 months ago
- ☆35Updated 2 years ago
- Python module to extract Ascii, Utf8, and Unicode strings from binary data. Lightning fast wrapper around c++ compiled code.☆53Updated 3 months ago
- Windows Minidump loader for Ghidra☆29Updated 2 years ago
- FastSymApi - A Fast API PDB Symbol Cache Server that efficiently caches and compresses PDBs on disk for quick and repeated retrieval.☆19Updated 2 months ago
- Plugin for x64dbg to disable parallel loading of dependencies☆19Updated 3 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆35Updated 3 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated 2 years ago
- A Binary Ninja plugin to detect Themida, WinLicense and Code Virtualizer's obfuscated code locations.☆82Updated last year
- A post-processing script for TinyTracer☆37Updated 2 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆27Updated 2 years ago
- Exemplary LLVM function pass implementing Control Flow Flattening.☆17Updated 7 years ago
- allowing um r/w through km from um ioctl ™☆11Updated 3 years ago
- Small OBJ/Archive Obfuscation framework☆12Updated last year
- Binary Ninja plugin to perform automated analysis of Windows drivers☆17Updated 6 years ago
- Rust program for interfacing with the gigabyte driver to gain access to powerful primitives such as arbitrary kernel memcpy.☆17Updated 2 years ago
- Reverse engineered API for Microsoft's Time Travel Debugger☆35Updated last year
- A packed & protected Module Loader and more, for 64-bit Windows☆27Updated 4 years ago