| glmcdona/Process-Dump |
1,442 |
|
0 |
0 |
over 2 years ago |
0 |
|
9 |
mit |
C |
| Windows tool for dumping malware PE files from memory back to disk for analysis. |
| JusticeRage/Manalyze |
960 |
|
0 |
0 |
over 2 years ago |
0 |
|
6 |
gpl-3.0 |
YARA |
| A static analyzer for PE executables. |
| hasherezade/pe-bear-releases |
758 |
|
0 |
0 |
almost 3 years ago |
0 |
|
9 |
|
|
| PE-bear (builds only) |
| hasherezade/mal_unpack |
572 |
|
0 |
0 |
over 2 years ago |
0 |
|
1 |
bsd-2-clause |
C |
| Dynamic unpacker based on PE-sieve |
| hasherezade/process_doppelganging |
383 |
|
0 |
0 |
over 3 years ago |
0 |
|
1 |
|
C |
| My implementation of enSilo's Process Doppelganging (PE injection technique) |
| secrary/SSMA |
380 |
|
0 |
0 |
almost 6 years ago |
0 |
|
4 |
gpl-3.0 |
Python |
| SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me] |
| joxeankoret/pyew |
297 |
|
0 |
0 |
over 6 years ago |
0 |
|
5 |
gpl-2.0 |
Python |
| Official repository for Pyew. |
| secrary/InfectPE |
270 |
|
0 |
0 |
almost 9 years ago |
0 |
|
1 |
|
C++ |
| InfectPE - Inject custom code into PE file [This project is not maintained anymore] |
| saferwall/pe |
240 |
|
0 |
18 |
over 2 years ago |
52 |
December 11, 2023 |
9 |
mit |
Go |
| A :zap: lightweight Go package to parse, analyze and extract metadata from Portable Executable (PE) binaries. Designed for malware analysis tasks and robust against PE malformations. |
| forrest-orr/moneta |
193 |
|
0 |
0 |
about 4 years ago |
0 |
|
0 |
gpl-3.0 |
C++ |
| Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs |
