Pinned Repositories
CAPE
Malware Configuration And Payload Extraction
capemon
CAPE monitor DLLs
coreclr
This repo contains the .NET Core runtime, called CoreCLR, and the base library, called mscorlib. It includes the garbage collector, JIT compiler, base .NET data types and many low-level classes.
de4dot
.NET deobfuscator and unpacker.
flare-dbg
flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
flare-ida
IDA Pro utilities from FLARE team
flare-vm
fREedom
capstone based disassembler for extracting to binnavi
qiling
Qiling Advanced Binary Emulation framework
RATDecoders
Python Decoders for Common Remote Access Trojans
spresec's Repositories
spresec/de4dot
.NET deobfuscator and unpacker.
spresec/CAPE
Malware Configuration And Payload Extraction
spresec/capemon
CAPE monitor DLLs
spresec/coreclr
This repo contains the .NET Core runtime, called CoreCLR, and the base library, called mscorlib. It includes the garbage collector, JIT compiler, base .NET data types and many low-level classes.
spresec/flare-dbg
flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
spresec/flare-ida
IDA Pro utilities from FLARE team
spresec/flare-vm
spresec/fREedom
capstone based disassembler for extracting to binnavi
spresec/qiling
Qiling Advanced Binary Emulation framework
spresec/RATDecoders
Python Decoders for Common Remote Access Trojans
spresec/UniversalInject
Windows IME-based DLL injection. Able to inject a DLL without OpenProcess or a process handle being necessary..
spresec/vivisect