trendmicro / researchLinks
Resources from Trend Micro Research teams
☆24Updated 7 months ago
Alternatives and similar repositories for research
Users that are interested in research are comparing it to the libraries listed below
Sorting:
- ☆25Updated 7 months ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 3 years ago
- A small tool to unmap PE memory dumps.☆11Updated last year
- General malware analysis stuff☆37Updated 10 months ago
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- UnpacMe IDA Byte Search☆28Updated last year
- Extract data of TTD trace file to a minidump☆28Updated last year
- ☆28Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆48Updated last year
- ☆31Updated 3 years ago
- An experimental dynamic malware unpacker based on Intel Pin and PE-sieve☆60Updated 10 months ago
- RenameLocalVars is an IDA plugin that renames local variables to something easier to read.☆15Updated last year
- Utilities for working with vivisect☆25Updated 3 months ago
- This repository contains an IDA processor for loading and disassembling compiled yara rules.☆41Updated 5 months ago
- Small visualizator for PE files☆69Updated last year
- A PE parser written in C++ which does not uses OOP. Helpful if you want to learn about PE parsing.☆18Updated 2 years ago
- A set of small utilities, helpers for PIN tracers☆33Updated last year
- Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.☆25Updated 3 years ago
- ☆28Updated 5 years ago
- Neutralize KEPServerEX anti-debugging techniques☆32Updated 2 years ago
- Support Windows OS Reversing by searching easily for references to functions across many DLLs☆34Updated 3 years ago
- Helper Script to convert a Windbg dumped structure (using the 'dt' command) into a C structure. It creates dummy structs for you if neede…☆26Updated last year
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Updated 2 years ago
- SPI flash read MitM attack PoC☆38Updated 3 years ago
- How to set up 2 VirtualBox VM to debug kernel driver using windbg☆54Updated 3 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆37Updated last year
- WinXPSP2.Cermalus on stereoids, supporting all 32 bits Windows version. Windows Kernel Virus stuff for noobs☆18Updated last year
- ☆25Updated last year
- ☆22Updated last year
- A post-processing script for TinyTracer☆36Updated 2 years ago