trendmicro / tlsh
☆732Updated this week
Related projects: ⓘ
- Fuzzy hashing API and fuzzy hashing tool☆661Updated 3 years ago
- Some C++ example code to demonstrate how to perform code similarity searches using SimHashing.☆559Updated 4 years ago
- AVClass malware labeling tool☆458Updated 2 weeks ago
- DRAKVUF Black-box Binary Analysis☆1,044Updated this week
- A static analyzer for PE executables.☆1,007Updated 8 months ago
- The Python interface for YARA☆648Updated 3 months ago
- PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.☆605Updated 2 years ago
- ☆928Updated 3 weeks ago
- Malware Configuration And Payload Extraction☆743Updated last year
- Proof of Concepts (PE, PDF...)☆1,436Updated last year
- Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js☆458Updated last year
- Synapse Central Intelligence System☆350Updated this week
- Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.☆479Updated 4 months ago
- Rekall Memory Forensic Framework☆1,916Updated 3 years ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆519Updated this week
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,650Updated 7 months ago
- Yara integrated software to handle archive file data.☆296Updated 2 years ago
- Automated static analysis tools for binary programs☆1,533Updated 2 weeks ago
- Python low-interaction honeyclient☆980Updated 2 weeks ago
- A Tool for Automatic Analysis of Malware Behavior☆365Updated 5 years ago
- Binee: binary emulation environment☆500Updated last year
- The official home of the LibVMI project is at https://github.com/libvmi/libvmi.☆666Updated this week
- Hachoir is a Python library to view and edit a binary stream field by field☆605Updated 2 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,044Updated 2 months ago
- DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the D…☆799Updated 2 months ago
- Binary analysis and management framework☆1,537Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,032Updated last week
- A fast, parallel test case minimization tool.☆941Updated 3 years ago
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,855Updated 3 weeks ago
- Platform for Architecture-Neutral Dynamic Analysis☆2,467Updated last week