hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols
updated at May 22, 2024, 3:38 a.m.
BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
updated at May 22, 2024, 3:12 a.m.
C++ application that uses memory and code hooks to detect packers
updated at May 22, 2024, 3:08 a.m.
A Python library and command line tools to provide interactive log visualization.
updated at May 22, 2024, 2:57 a.m.
Checks with NSRL RDS servers looking for for hash matches
updated at May 22, 2024, 1:50 a.m.
Tool to gather Threat Intelligence indicators from publicly available sources
updated at May 21, 2024, 8:05 p.m.
DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.
updated at May 21, 2024, 3:13 p.m.
Reverse engineering tool for virtualization wrappers
updated at May 21, 2024, 11 a.m.
Defanged Indicator of Compromise (IOC) Extractor.
updated at May 20, 2024, 9:30 a.m.
Cross-language temporary (disposable/throwaway) email detection library. Covers 55 734+ fake email providers.
updated at May 20, 2024, 7:20 a.m.
Tool to help guess a files 256 byte XOR key by using frequency analysis
updated at May 19, 2024, 3:01 p.m.
Collection of malware persistence and hunting information. Be a persistent persistence hunter!
updated at May 19, 2024, 3:43 a.m.
A Python RESTful API framework for online malware analysis and threat intelligence services.
updated at May 19, 2024, 2:45 a.m.