silascutler / LnkParse
Windows Shortcut file (LNK) parser
☆132Updated last year
Related projects: ⓘ
- ☆149Updated this week
- ☆134Updated 5 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- Smart DLL execution for malware analysis in sandbox systems☆141Updated 9 years ago
- FLARE Kernel Shellcode Loader☆176Updated 5 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆104Updated 3 years ago
- A tool for de-obfuscating PowerShell scripts☆65Updated 5 years ago
- A tool for detecting VBA stomping.☆95Updated 2 years ago
- Telsy CTI Research Team☆57Updated 3 years ago
- PoC for persisting .NET payloads in Windows Notification Facility (WNF) state names using low-level Windows Kernel API calls.☆147Updated 5 years ago
- Windows link file (shortcuts) examiner☆65Updated 3 months ago
- Parsers for custom malware formats ("Funky malware formats")☆92Updated 2 years ago
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆82Updated last year
- A repository of some of my Windows 10 Device Guard Bypasses☆133Updated 7 years ago
- A C/C++ implementation of Microsoft's Antimalware Scan Interface☆170Updated 6 years ago
- ☆213Updated 6 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 7 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆83Updated 2 years ago
- Another Repo of Malware. Enjoy. <3☆60Updated 5 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆73Updated 9 years ago
- A one-click tool to inject jobs into the BITS queue (Background Intelligent Transfer Service), allowing arbitrary program execution as th…☆98Updated 5 years ago
- An attempt at Process Doppelgänging☆183Updated 6 years ago
- Official VirusTotal plugin for IDA Pro☆154Updated 8 months ago
- Driver Initial Reconnaissance Tool☆119Updated 4 years ago
- ☆230Updated 6 years ago
- ☆112Updated 8 years ago
- Just a normal flask web app to understand win32api with code snippets and references.☆71Updated 4 years ago
- Generating YARA rules based on binary code☆198Updated 2 years ago
- ☆42Updated 5 years ago
- Script analysis tool based on Frida.re☆127Updated 7 years ago