Alternatives and similar repositories for PortEx:

Users that are interested in PortEx are comparing it to the libraries listed below

• guelfoweb / peframe
  PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
  ☆613Updated 2 years ago
• hasherezade / bearparser
  Portable Executable parsing library (from PE-bear)
  ☆658Updated this week
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,057Updated last year
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,149Updated last week
• AlicanAkyol / sems
  Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
  ☆451Updated 6 years ago
• unipacker / unipacker
  Automatic and platform-independent unpacker for Windows binaries based on emulation
  ☆689Updated 6 months ago
• vivisect / vivisect
  ☆962Updated 2 weeks ago
• hasherezade / malware_analysis
  Various snippets created during malware analysis
  ☆459Updated 2 years ago
• a1ext / labeless
  Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…
  ☆543Updated 2 months ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆574Updated last month
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,113Updated this week
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆249Updated 2 years ago
• cuckoosandbox / community
  Repository of modules and signatures contributed by the community
  ☆327Updated 2 years ago
• joxeankoret / pyew
  Official repository for Pyew.
  ☆390Updated 5 years ago
• carbonblack / binee
  Binee: binary emulation environment
  ☆516Updated 2 years ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆725Updated last month
• mandiant / flare-wmi
  ☆429Updated last year
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆602Updated last year
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆270Updated 7 years ago
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆359Updated 4 years ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆497Updated 11 months ago
• hiddenillusion / AnalyzePE
  Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.
  ☆205Updated 11 years ago
• d3v1l401 / FindCrypt-Ghidra
  IDA Pro's FindCrypt ported to Ghidra, with an updated and customizable signature database
  ☆532Updated last year
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆293Updated 9 months ago
• cea-sec / Sibyl
  A Miasm2 based function divination.
  ☆534Updated 4 years ago
• decalage2 / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆1,086Updated 9 months ago
• HynekPetrak / malware-jail
  Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
  ☆466Updated last year
• mrexodia / dumpulator
  An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in gen…
  ☆799Updated last year
• brad-sp / cuckoo-modified
  Modified edition of cuckoo
  ☆269Updated 5 years ago
• cuckoosandbox / monitor
  The new Cuckoo Monitor.
  ☆345Updated 9 months ago