peta909

peta909's Stars

• dnSpyEx/dnSpy

  Unofficial revival of the well known .NET debugger and assembly editor, dnSpy

  Language:C#7.1k137247471

• JonathanSalwan/Triton

  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

  Language:C++3.6k138965540

• hfiref0x/KDU

  Kernel Driver Utility

  Language:C2k6870424

• Idov31/Nidhogg

  Nidhogg is an all-in-one simple to use windows kernel rootkit.

  Language:C++1.8k3615271

• wavestone-cdt/EDRSandblast

  Language:C1.6k3816282

• igogo-x86/HexRaysPyTools

  IDA Pro plugin which improves work with HexRays decompiler and helps in process of reconstruction structures and classes

  Language:Python1.4k6959225

• kevthehermit/RATDecoders

  Python Decoders for Common Remote Access Trojans

  Language:Python1.1k12019311

• mgeeky/ThreadStackSpoofer

  Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

  Language:C++1.1k281177

• gaasedelen/patching

  An Interactive Binary Patching Plugin for IDA Pro

  Language:Python8972822112

• corkami/docs

  documentations, slides decks...

  Language:TeX777465103

• Dump-GUY/Malware-analysis-and-Reverse-engineering

  Some of my publicly available Malware analysis and Reverse engineering.

  Language:Python763521150

• NUL0x4C/AtomPePacker

  A Highly capable Pe Packer

  Language:C6852015117

• jstrosch/learning-malware-analysis

  This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware.

  Language:C61019174

• vxlang/vxlang-page

  protector & obfuscator & code virtualizer

  Language:C++416121230

• horsicq/XOpcodeCalc

  Opcode calculator / ASM calculator

  Language:C++37513666

• herosi/CTO

  Call Tree Overviewer

  Language:Python32812637

• allthingsida/qscripts

  Programming productivity plugin for IDAPython and C++ development

  Language:C++31715736

• dod-cyber-crime-center/DC3-MWCP

  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.

  Language:Python303432059

• VollRagm/PTView

  Browse Page Tables on Windows (Page Table Viewer)

  Language:C#1847037

• OALabs/hexcopy-ida

  IDA plugin for quickly copying disassembly as encoded hex bytes

  Language:Python59509

• peternguyen93/lldbinit

  A fork version of lldbinit https://github.com/gdbinit/lldbinit

  Language:Python462011

• ioncodes/kdbg-driver-vagrant

  Language:Batchfile43302

• fboldewin/misc_malware

  Language:Python37304

• manojpandey/rc4

  Implementation of the stream cipher - RC4 (Rivest Cipher 4) using both Python 2.x and 3.x

  Language:Python223018

• star-sg/kernelcache_decryptor

  Kernel Cache Decryption for iOS

  Language:C14403

• limbernie/WSHooker

  WSHooker — Windows Script Hooking with Frida

  Language:Python11303

• gkucherin/finspy_devirtualizer

  Language:Python2201

• cauliflowerdoughnuts/config_extractors

  Configuration extractors/decryptors for various Windows malware families.

  Language:Python1102

• peta909/DrvMon

  Advanced driver monitoring utility.

  Language:C1000

• peta909/vxlang-page

  protector & obfuscator & code virtualizer

  Language:C++100