tbarabosch / quincyLinks
Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"
☆69Updated 3 years ago
Alternatives and similar repositories for quincy
Users that are interested in quincy are comparing it to the libraries listed below
Sorting:
- Analysis PE file or Shellcode☆50Updated 9 years ago
- ☆52Updated 10 years ago
- zer0m0n driver for cuckoo sandbox☆88Updated 9 years ago
- IDATACO IDA Pro Plugin☆47Updated 9 years ago
- Simple NTFS crawler.☆56Updated 8 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Updated 9 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 8 years ago
- Memory forensics of virtualization environments☆47Updated 11 years ago
- ☆43Updated 7 years ago
- Automated malware unpacker☆120Updated 9 years ago
- An implementation of a generic unpacker based on Intel PIN☆28Updated 9 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- ☆91Updated 8 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 8 years ago
- ☆36Updated 8 years ago
- ☆108Updated 8 years ago
- A system to record malware using PANDA☆44Updated 6 years ago
- QEMU with rVMI extensions☆24Updated 8 years ago
- Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents☆23Updated 8 years ago
- ExeScan is the FREE console based tool to detect anomalies in PE (Portable Executable) files. It quickly scans given executable file and …☆21Updated 6 years ago
- A set of scripts for a radare-based malware code analysis workflow☆68Updated 6 years ago
- Resolves DLL API entrypoints for a process w/ remote query capabilities.☆56Updated 8 years ago
- Linux malware analysis based on Cuckoo Sandbox.☆41Updated 2 years ago
- Collection of pin tools☆52Updated 9 years ago
- ransomware_begone☆42Updated 9 years ago
- Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection☆82Updated 8 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 8 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆37Updated 9 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 11 years ago
- This repository contains the slides and content for the malware unpacking training given at r2con 2017☆51Updated 7 years ago