you0708 / lznt1Links
Python implementation of LZNT1 compression/decompression
☆65Updated 5 years ago
Alternatives and similar repositories for lznt1
Users that are interested in lznt1 are comparing it to the libraries listed below
Sorting:
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆123Updated 4 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Simple 32/64-bit PEs loader.☆139Updated 6 years ago
- ☆71Updated last year
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆85Updated 3 years ago
- A git history of Windows filesystems☆76Updated 5 years ago
- Enumerate Windows Defender threat families and dump their names according category☆91Updated 6 years ago
- FLARE Kernel Shellcode Loader☆179Updated 6 years ago
- pyGoRE - Python library for analyzing Go binaries☆64Updated 3 years ago
- ☆115Updated 9 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆184Updated 4 years ago
- ☆22Updated 4 years ago
- A simple API monitor for Windbg☆63Updated 8 years ago
- CAPE monitor DLLs☆41Updated 5 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆67Updated 4 years ago
- Flare-On solutions☆36Updated 5 years ago
- A simple tool to view important DLL Characteristics and change DEP and ASLR☆44Updated 6 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 5 years ago
- Transfer EIP control to shellcode during malware analysis investigation☆77Updated 10 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆33Updated last year
- Go Lang Portable Executable Parser☆39Updated 4 years ago
- POC viruses I have created to demo some ideas☆59Updated 5 years ago
- Fileless persistence, attacks and anti-forensic capabilties.☆93Updated 6 years ago
- A utility to fix intentionally corrupted UPX packed files.☆90Updated 2 years ago
- ANBU (Automatic New Binary Unpacker) a tool for me to learn about PIN and about algorithms for generic unpacking.☆92Updated 6 years ago
- Official VirusTotal plugin for IDA Pro☆158Updated this week
- ☆48Updated 5 years ago
- ☆34Updated 4 years ago
- IDA Pro plugin that changes color of call instructions and works with all architectures☆59Updated 6 years ago
- ☆49Updated 5 years ago