zha0 / pdfstreamdumperLinks
research tool for the analysis of malicious pdf documents. make sure to run the installer first to get all of the 3rd party dlls installed correctly. then goto the install directory and git the current source. Source is installed with the main installer. This is just for updates and version control.
☆16Updated 12 years ago
Alternatives and similar repositories for pdfstreamdumper
Users that are interested in pdfstreamdumper are comparing it to the libraries listed below
Sorting:
- Python implementation of LZNT1 compression/decompression☆70Updated 5 years ago
- Zero Wine Tryouts: An open source malware analysis tool☆17Updated 9 years ago
- Scripts for disassembling VBScript p-code in the memory to aid in exploits analysis☆86Updated 3 years ago
- UPDATED 2022 Flame malware sourcecode available !! Forked. I will later provide my sample of Flame, Duqu and Gauss.☆20Updated last year
- Shellcode emulator written with Unicorn Framework With Process Dump Emulation Environment☆124Updated 5 years ago
- ☆44Updated 7 years ago
- Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.☆81Updated 5 years ago
- Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019☆42Updated 6 years ago
- Extract OLEv1 objects from RTF files by instrumenting Word☆51Updated 6 years ago
- ☆68Updated 6 years ago
- Rekall Memory Forensic Framework☆33Updated 6 years ago
- Plugin for x64dbg to generate Yara rules from function basic blocks.☆37Updated 8 years ago
- Cockroach is your primitive & immortal swiss army knife.☆49Updated 4 years ago
- Mimojas Firmware Toolkit for unpacking and analysis firmware images☆14Updated 5 years ago
- Ghidra plugin for https://analyze.intezer.com☆72Updated 3 years ago
- IDAPython scripts☆15Updated 8 years ago
- Emu-strings project - JScript/VBScript automated dropper analysis system☆18Updated 4 years ago
- Port of the binary diffing library, diaphora, for radare2 and mariadb☆54Updated 2 years ago
- Enumerate Windows Defender threat families and dump their names according category☆93Updated 6 years ago
- Named pipe I/O ETW provider for Windows☆71Updated 5 years ago
- A simple API monitor for Windbg☆65Updated 8 years ago
- winAFL patch to enable network-based apps fuzzing☆37Updated 7 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆70Updated 4 years ago
- ☆32Updated last year
- Transfer EIP control to shellcode during malware analysis investigation☆77Updated 11 years ago
- Use WinDBG to trace the Windows API calls of any Portable Executable file☆32Updated 8 years ago
- ☆23Updated 4 years ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58Updated 4 years ago
- Data to test capa's code and rules.☆47Updated this week
- Yet another rule generator for Yara☆29Updated 7 months ago