Grow your team on GitHub
GitHub is home to over 28 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.Sign up
Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.
FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.
ETW Python Library
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
GeoLogonalyzer is a utility to analyze remote access logs for anomalies such as travel feasibility and data center sources.
The User Interface for GoCrack
GoCrack is a management frontend for password cracking tools written in Go
FLARE Kernel Shellcode Loader
IDA Pro utilities from FLARE team
Rekall Forensics and Incident Response Framework with rVMI extensions
IDA Pro plugin to assist with complex graphs
Bro PCAP Processing and Tagging API
flare-dbg is a project meant to aid malware reverse engineers in rapidly developing debugger scripts.
rVMI - A New Paradigm For Full System Analysis
Linux-KVM with rVMI extensions
QEMU with rVMI extensions
Resolves DLL API entrypoints for a process w/ remote query capabilities.
SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.
libemu shim layer and win32 environment for Unicorn Engine
A Coq Library for Efficiently Executable Sets
FireEye Publicly Shared Indicators of Compromise (IOCs)