yara-validatorValidates yara rules and tries to repair the broken ones.
Stars: ✭ 37 (+208.33%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+2625%)
factual-rules-generatorFactual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Stars: ✭ 62 (+416.67%)
ThreatKBKnowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Stars: ✭ 68 (+466.67%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+2275%)
HyaraYara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)
Stars: ✭ 142 (+1083.33%)
yarasploitYaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.
Stars: ✭ 31 (+158.33%)
yara-forensicsSet of Yara rules for finding files using magics headers
Stars: ✭ 115 (+858.33%)
Judge-Jury-and-ExecutableA file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Stars: ✭ 66 (+450%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (+183.33%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (+983.33%)
yara-rulesYara rules written by me, for free use.
Stars: ✭ 13 (+8.33%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+18375%)
DyninstDyninstAPI: Tools for binary instrumentation, analysis, and modification.
Stars: ✭ 443 (+3591.67%)
KiewtaiA port of Kaitai to the Hiew hex editor
Stars: ✭ 108 (+800%)
DissectionThe dissection of a simple "hello world" ELF binary.
Stars: ✭ 427 (+3458.33%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+24750%)
BineeBinee: binary emulation environment
Stars: ✭ 408 (+3300%)
DecompComponents of a decompilation pipeline.
Stars: ✭ 343 (+2758.33%)
Barf ProjectBARF : A multiplatform open source Binary Analysis and Reverse engineering Framework
Stars: ✭ 1,280 (+10566.67%)
DdisasmA fast and accurate disassembler
Stars: ✭ 325 (+2608.33%)
E9patchA powerful static binary rewriting tool
Stars: ✭ 317 (+2541.67%)
PrefPortable Reverse Engineering Framework
Stars: ✭ 127 (+958.33%)
Binaryninja ApiPublic API, examples, documentation and issues for Binary Ninja
Stars: ✭ 437 (+3541.67%)
GtirbIntermediate Representation for Binary analysis and transformation
Stars: ✭ 190 (+1483.33%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+3416.67%)
BapBinary Analysis Platform
Stars: ✭ 1,385 (+11441.67%)
LiefAuthors
Stars: ✭ 2,730 (+22650%)
Cwe checkercwe_checker finds vulnerable patterns in binary executables
Stars: ✭ 372 (+3000%)
BamThe Binary Analysis Metadata tool gathers information about Windows binaries to aid in their analysis. #nsacyber
Stars: ✭ 93 (+675%)
Avatar2Python core of avatar²
Stars: ✭ 334 (+2683.33%)
McsemaFramework for lifting x86, amd64, aarch64, sparc32, and sparc64 program binaries to LLVM bitcode
Stars: ✭ 2,198 (+18216.67%)
IdenlibidenLib - Library Function Identification [This project is not maintained anymore]
Stars: ✭ 322 (+2583.33%)
RedasmThe OpenSource Disassembler
Stars: ✭ 1,042 (+8583.33%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+1875%)
FalconBinary Analysis Framework in Rust
Stars: ✭ 307 (+2458.33%)
MamboA low-overhead dynamic binary instrumentation and modification tool for ARM (now with both AArch32 and AArch64 support)
Stars: ✭ 199 (+1558.33%)
ScriptingPS / Bash / Python / Other scripts For FUN!
Stars: ✭ 47 (+291.67%)
BootstompBootStomp: a bootloader vulnerability finder
Stars: ✭ 303 (+2425%)
Macbook《macOS软件安全与逆向分析》随书源码
Stars: ✭ 302 (+2416.67%)
PharosAutomated static analysis tools for binary programs
Stars: ✭ 955 (+7858.33%)
ZelosA comprehensive binary emulation and instrumentation platform.
Stars: ✭ 298 (+2383.33%)
TritonTriton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.
Stars: ✭ 1,934 (+16016.67%)
Befa LibraryHigh-level library for executable binary file analysis
Stars: ✭ 12 (+0%)
B2r2B2R2 is a collection of useful algorithms, functions, and tools for binary analysis.
Stars: ✭ 262 (+2083.33%)
PepperPE (x86) and PE+ (x64) files viewer, based on libpe.
Stars: ✭ 65 (+441.67%)
ManticoreSymbolic execution tool
Stars: ✭ 2,599 (+21558.33%)
RematchREmatch, a complete binary diffing framework that is free and strives to be open source and community driven.
Stars: ✭ 141 (+1075%)
crusherNo description or website provided.
Stars: ✭ 21 (+75%)
AndromedaAndromeda - Interactive Reverse Engineering Tool for Android Applications
Stars: ✭ 627 (+5125%)