assemblyline-coreCore server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
Stars: ✭ 16 (-15.79%)
toolkitThe essential toolkit for reversing, malware analysis, and cracking
Stars: ✭ 176 (+826.32%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+1378.95%)
notion-sdk-pyOfficial Notion SDK rewritten in Python (sync + async)
Stars: ✭ 753 (+3863.16%)
coinbaseproA Python API for Coinbase Pro
Stars: ✭ 52 (+173.68%)
learning-malware-analysisThis repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware.
Stars: ✭ 124 (+552.63%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+1494.74%)
Guanciale🥓 Grab info needed by Carbonara from executables and disassemblers databases
Stars: ✭ 14 (-26.32%)
Vba2graphVba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.
Stars: ✭ 245 (+1189.47%)
Radare2UNIX-like reverse engineering framework and command-line toolset
Stars: ✭ 15,412 (+81015.79%)
aparoidStatic and dynamic Android application security analysis
Stars: ✭ 62 (+226.32%)
SuperLibraryInformation Security Library
Stars: ✭ 60 (+215.79%)
UnAutoItThe Cross Platform AutoIt Extractor
Stars: ✭ 90 (+373.68%)
Kernel-dll-injectorKernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Stars: ✭ 256 (+1247.37%)
cryptojpcryptojp is a Python2 and Python3 client for crypto coin trade. Binance/Poloniex/Hitbtc/Bitflyer etc...
Stars: ✭ 22 (+15.79%)
fame modulesCommunity modules for FAME
Stars: ✭ 55 (+189.47%)
Pepper An open source script to perform malware static analysis on Portable Executable
Stars: ✭ 250 (+1215.79%)
emeraldImport DynamoRIO drcov code coverage data into Ghidra
Stars: ✭ 30 (+57.89%)
NaoSimple No-meaning Assembly Omitter for IDA Pro (This is just a prototype)
Stars: ✭ 228 (+1100%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (+121.05%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+1052.63%)
LiefAuthors
Stars: ✭ 2,730 (+14268.42%)
cheatsheetThese are some of the commands which I use frequently during Malware Analysis and DFIR.
Stars: ✭ 23 (+21.05%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+473.68%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-5.26%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (+1463.16%)
ssdcssdeep cluster analysis for malware files
Stars: ✭ 24 (+26.32%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (+394.74%)
angr-antievasionFinal project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
Stars: ✭ 35 (+84.21%)
vminspectTools for inspecting disk images
Stars: ✭ 25 (+31.58%)
CmulatorCmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript
Stars: ✭ 197 (+936.84%)
PyBaiduPanA python client for Baidu Pan.
Stars: ✭ 28 (+47.37%)
telfhashSymbol hash for ELF files
Stars: ✭ 75 (+294.74%)
gnewsclientAn easy-to-use python client for Google News feeds.
Stars: ✭ 42 (+121.05%)
Flare VmNo description or website provided.
Stars: ✭ 3,201 (+16747.37%)
pymobirdA python client for memobird printer
Stars: ✭ 18 (-5.26%)
XlmmacrodeobfuscatorExtract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
Stars: ✭ 243 (+1178.95%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+1147.37%)
etcd3-pyPure python client for etcd v3 (Using gRPC-JSON-Gateway)
Stars: ✭ 97 (+410.53%)
Shed.NET runtime inspector
Stars: ✭ 229 (+1105.26%)
Practical Malware AnalysisMaterials for a course based on the Practical Malware Analysis text by Andrew Honig and Michael Sikorski
Stars: ✭ 16 (-15.79%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+1084.21%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (+263.16%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+994.74%)
speakeasyWindows kernel and user mode emulation.
Stars: ✭ 1,017 (+5252.63%)
REW-sploitEmulate and Dissect MSF and *other* attacks
Stars: ✭ 115 (+505.26%)
yaraMalice Yara Plugin
Stars: ✭ 27 (+42.11%)
xLoggerSimple windows API logger
Stars: ✭ 62 (+226.32%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (+21.05%)