tbarabosch / quincyLinks
Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"
☆69Updated 3 years ago
Alternatives and similar repositories for quincy
Users that are interested in quincy are comparing it to the libraries listed below
Sorting:
- IDATACO IDA Pro Plugin☆47Updated 9 years ago
- ☆52Updated 10 years ago
- ☆36Updated 7 years ago
- zer0m0n driver for cuckoo sandbox☆88Updated 9 years ago
- ransomware_begone☆42Updated 9 years ago
- ☆42Updated 6 years ago
- A system to record malware using PANDA☆44Updated 6 years ago
- ☆109Updated 8 years ago
- Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents☆23Updated 8 years ago
- Distributing the REconstruction of High-Level IR for Large Scale Malware Analysis☆66Updated 9 years ago
- Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns☆67Updated 8 years ago
- Simple NTFS crawler.☆56Updated 8 years ago
- Modified edition of cuckoo community modules☆32Updated 5 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Updated 8 years ago
- Using WinDBG to tap into JavaScript and help with deobfuscation and browser exploit detection☆82Updated 8 years ago
- Analysis PE file or Shellcode☆50Updated 9 years ago
- flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.☆150Updated 7 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 6 years ago
- Imports MSDN documentation into IDA Pro☆51Updated 13 years ago
- ASERT shared scripts for reversing☆32Updated 7 years ago
- Sublime Malware Research Tool☆66Updated 9 months ago
- QEMU with rVMI extensions☆25Updated 8 years ago
- Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation☆40Updated 8 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…☆37Updated 9 years ago
- Memory forensics of virtualization environments☆47Updated 10 years ago
- ☆75Updated 8 years ago
- Linux malware analysis based on Cuckoo Sandbox.☆40Updated 2 years ago
- Yet another Python library to read and write PE/PE+ files.