sophoslabs / emotet_unflatten_poc

Related projects ⓘ

Alternatives and complementary repositories for emotet_unflatten_poc

• vmware-archive / HexRaysDeob
  Hex-Rays microcode API plugin for breaking an obfuscating compiler
  ☆66Updated 5 years ago
• vmallet / ida-hex-highlighter
  Hex-Rays Block Highlighter plugin for IDA to highlight if/for/do/switch/while blocks
  ☆60Updated 2 years ago
• merces / showcomments
  IDA Pro plugin that displays all comments in a database
  ☆63Updated 2 months ago
• janbbeck / CleanTricks
  Binary Ninja plugin to clean up some common obfuscation techniques.
  ☆19Updated 4 years ago
• veritas501 / ToyObfuscator
  Toy LLVM obfuscator pass
  ☆69Updated 3 years ago
• Mizari / phrank
  Tool that automates some useful structure routines in IDA PRO
  ☆74Updated 7 months ago
• allthingsida / strikeout
  IDA strike-out: A Hex-Rays decompiler plugin to patch the Ctree
  ☆98Updated 2 months ago
• binarly-io / idapcode
  IDA plugin displaying the P-Code for the current function
  ☆64Updated last year
• mrphrazer / hitb2021ams_deobfuscation
  ☆71Updated 3 years ago
• binarly-io / idalib
  Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.0’s idalib
  ☆59Updated this week
• harelon / GoFastAnalyzer
  Go fastcall analysis for ida decompiler
  ☆28Updated 5 months ago
• mrphrazer / r2con2020_deobfuscation
  ☆76Updated 3 years ago
• Accenture / Condstanta
  ☆56Updated 2 years ago
• Cirn09 / idavscode
  Debug IDAPython in VSCode
  ☆19Updated last year
• NyaMisty / ida_kern
  Raw IDA Kernel API for IDAPython
  ☆33Updated 2 years ago
• zhangyoufu / lumina
  A Go library speaking Hex-Rays IDA lumina protocol
  ☆34Updated last year
• zerotypic / wilhelm
  Alternative API for IDA / Hex-Rays
  ☆72Updated last year
• eset / stadeo
  Control-flow-flattening and string deobfuscator
  ☆145Updated 3 years ago
• DenuvoSoftwareSolutions / GAMBA
  Simplification of General Mixed Boolean-Arithmetic Expressions: GAMBA
  ☆118Updated 11 months ago
• jeffli678 / VM_Disassembler
  A recursive disassembler written in Python. Most suitable for VMs in CTFs.
  ☆19Updated 4 years ago
• patois / FuncScanner
  Collects extended function properties from IDA Pro databases
  ☆91Updated 3 years ago
• eternalklaus / RefHunter
  User-friendly reference finder in IDA
  ☆37Updated last year
• ulexec / elf_dynsym_obfuscation
  PoC for obfuscating the dynamic symbol table injecting a custom Hash Table to do symbol resolution
  ☆25Updated 4 years ago
• patois / hexrays_scripts
  Various scripts for the Hexrays decompiler
  ☆92Updated last year
• AntoineBlaud / EasyRe
  IDA Python3 Plugin to make your RE life easier. Trace execution and save code/memory for detailed exploration.
  ☆32Updated 8 months ago
• david-lazar / IDAPatternSearch
  IDAPatternSearch adds a capability of finding functions according to bit-patterns into the well-known IDA Pro disassembler based on Ghidr…
  ☆62Updated 3 years ago
• pgarba / UniTaint
  PoC for a taint based attack on VMProtect
  ☆109Updated 5 years ago
• NyaMisty / idasdk-collection
  ☆44Updated 3 weeks ago
• quarkslab / qsynthesis
  Greybox Synthesizer geared for deobfuscation of assembly instructions.
  ☆139Updated last year
• qilingframework / rootfs
  ☆45Updated 3 months ago