Stars
Python tool to resolve all strings in Go binaries obfuscated by garble
Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis tool from malware detection
Tookie is a advanced OSINT information gathering tool that finds social media accounts based on inputs.
dnSpyEx / dnSpy
Forked from dnSpy/dnSpyUnofficial revival of the well known .NET debugger and assembly editor, dnSpy
Elastic Security detection content for Endpoint
Static deobfuscator for Themida, WinLicense and Code Virtualizer 3.x's mutation-based obfuscation.
A resource containing all the tools each ransomware gangs uses
An Archive of Ransomware Notes Past and Present Collected by Zscaler ThreatLabz
TeleTracker is a simple set of Python scripts designed for anyone investigating Telegram channels. It helps you send messages quickly and gather useful channel information easily.
Deobfuscate batch scripts obfuscated using string substitution and escape character techniques.
Map tracking ransomware, by OCD World Watch team
Download from .onion-domains faster.
CuckooML: Machine Learning for Cuckoo Sandbox
This is a Malware Detection ML model made using Random Forest Algorithm
Collection of malware source code for a variety of platforms in an array of different programming languages.
A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
A helper script for unpacking and decompiling EXEs compiled from python code.
IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
An interactive list of plugins for hex-rays' IDA Pro
IDApython Scripts for Analyzing Golang Binaries