sysenter-eip / VBParser

Related projects: ⓘ

• williballenthin / python-vb
  analysis of visual basic code
  ☆39Updated 6 years ago
• jbremer / vb6tracer
  Runtime tracer for the vb6 virtual machine
  ☆51Updated 6 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 9 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆45Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• herrcore / aplib-ripper
  Use this library to automatically extract PE files compressed with aplib from a binary blob.
  ☆32Updated 5 years ago
• tildedennis / malware
  ☆41Updated 6 years ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆57Updated 3 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆92Updated 2 years ago
• hasherezade / tag_converter
  ☆21Updated 3 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆83Updated 5 years ago
• dzzie / myaut_contrib
  ☆46Updated this week
• cryptogramfan / Malware-Analysis-Scripts
  Handy scripts to speed up malware analysis
  ☆35Updated 11 months ago
• KasperskyLab / VBscriptInternals
  Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis
  ☆83Updated 2 years ago
• mr-tz / idapython
  IDAPython scripts
  ☆15Updated 7 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆65Updated 3 months ago
• danielplohmann / empty_msvc
  A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.
  ☆30Updated 3 months ago
• cylance / GetNETGUIDs
  Extract GUIDs from .NET assemblies
  ☆21Updated 8 years ago
• karttoon / binsequencer
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆72Updated 2 years ago
• dilagit / yaragui
  ☆64Updated this week
• glmcdona / MALM
  MALM: Malware Monitor
  ☆44Updated 11 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆34Updated 7 years ago
• spender-sandbox / cuckoomon-modified
  Modified edition of cuckoomon
  ☆48Updated 6 years ago
• Techlord-RCE / VB-Exe-Parser
  VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
  ☆16Updated 7 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆33Updated 8 years ago
• ph0sec / CaptureBAT-client
  Capture BAT is a behavioral analysis tool of applications for the Win32 operating system family.
  ☆29Updated 11 years ago
• Fare9 / ANBU
  ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.
  ☆88Updated 5 years ago
• hillu / yara-rules-re
  Tools for inspecting YARA bytecode
  ☆15Updated 4 years ago
• malrev / avclassplusplus
  ☆35Updated this week
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆37Updated 3 years ago