trendmicro / research
Resources from Trend Micro Research teams
☆23Updated 4 months ago
Alternatives and similar repositories for research:
Users that are interested in research are comparing it to the libraries listed below
- ☆25Updated 4 months ago
- UnpacMe IDA Byte Search☆28Updated last year
- General malware analysis stuff☆36Updated 7 months ago
- A small tool to unmap PE memory dumps.☆11Updated last year
- Python 3 - Manipulation and conversation with different data type (Bytes operations)☆26Updated 3 years ago
- Extract data of TTD trace file to a minidump☆28Updated last year
- This repository contains an IDA processor for loading and disassembling compiled yara rules.☆40Updated 2 months ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆70Updated 11 months ago
- Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.☆25Updated 3 years ago
- This x64dbg plugin allows you to upload your sample to Malcore and view the results.☆33Updated last year
- ☆15Updated last year
- RenameLocalVars is an IDA plugin that renames local variables to something easier to read.☆15Updated last year
- A set of small utilities, helpers for PIN tracers☆31Updated last year
- ☆28Updated 2 years ago
- ☆31Updated 2 years ago
- Small visualizator for PE files☆67Updated last year
- ☆17Updated 3 years ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Updated 2 years ago
- SPI flash read MitM attack PoC☆37Updated 2 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆35Updated 7 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆52Updated 2 years ago
- Winbindex bot to pull in binaries for specific releases☆47Updated last year
- A post-processing script for TinyTracer☆38Updated 2 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆19Updated 2 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆54Updated 3 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 6 months ago
- A library and cli tool to extract HWP files.☆20Updated 2 months ago
- Go Lang Portable Executable Parser☆39Updated 3 years ago
- IDA Python deobfuscation script for ConfuserEx binaries☆35Updated 2 years ago
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 2 years ago