tklengyel / drakvufLinks
DRAKVUF Black-box Binary Analysis
☆1,176Updated 3 weeks ago
Alternatives and similar repositories for drakvuf
Users that are interested in drakvuf are comparing it to the libraries listed below
Sorting:
- A static analyzer for PE executables.☆1,085Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,215Updated this week
- ☆974Updated last month
- InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date…☆571Updated 3 years ago
- Windows kernel and user mode emulation.☆1,770Updated 6 months ago
- Binee: binary emulation environment☆528Updated 2 years ago
- Automatic and platform-independent unpacker for Windows binaries based on emulation☆715Updated 2 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆638Updated this week
- Virtual Machine Introspection, Tracing & Debugging☆585Updated 3 years ago
- The official home of the LibVMI project is at https://github.com/libvmi/libvmi.☆724Updated 6 months ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,196Updated 2 months ago
- Platform for Architecture-Neutral Dynamic Analysis☆2,676Updated this week
- Automated static analysis tools for binary programs☆1,640Updated 2 months ago
- Export disassemblies into Protocol Buffers☆1,149Updated last month
- The new Cuckoo Monitor.☆347Updated last year
- Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…☆1,833Updated 8 months ago
- DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the D…☆828Updated 11 months ago
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,677Updated last year
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆615Updated 3 years ago
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,980Updated last year
- Java library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness☆521Updated 4 months ago
- IDA Pro utilities from FLARE team☆2,392Updated 11 months ago
- Dynamic unpacker based on PE-sieve☆774Updated last month
- A Pin Tool for tracing API calls etc☆1,549Updated 3 weeks ago
- Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools☆458Updated 6 years ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆2,015Updated last month
- Portable Executable parsing library (from PE-bear)☆656Updated 3 weeks ago
- Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.☆509Updated last year
- Checksec, but for Windows: static detection of security mitigations in executables☆607Updated 9 months ago
- Labeless is a multipurpose IDA Pro plugin system for labels/comments synchronization with a debugger backend, with complex memory dumping…☆564Updated 8 months ago