Portable Executable (PE) library written in .Net
-
Updated
Jul 10, 2024 - C#
Portable Executable (PE) library written in .Net
Monitoring Windows processes tool for malware analysis. Inspired by Regshot tool.
A library for creating, reading and editing PE files and .NET modules.
Analyzers for Portable Executable anomalies and other malware behavior.
A simple crossplatform heuristic PE-analyzer
A simple commandline application to automatically decrypt strings from Obfuscator protected binaries
R.I.P. MrAnon/MrAnonTools/MrAnon666. This is free release for all kids who got scammed/ghosted by gentleman mentioned above. Have fun! ^^
This code run as a service continuous monitoring all Sysmon event logs and take action based on events generated by attackers activities. Also sending filtered and contextual details on telegram bots to update administrators. Uploading and capturing all malware's dropped by attackers.
This repository contains dotNet tools to address dotNet binary bloat.
Easy-as-dumb toolkit to prevent any malicious injections in your Android app. Beware of cheaters!
A tool for extracting contents (assemblies, configuration, etc.) from a single-file application to a directory, suitable for purposes like malware analysis.
A C# client for Vertex Synapse
PoC Windows Usermode Rootkit made in C# and C++, made to show you how to protect your process using hooking.
Safe virtual drive which prevent threats being executed
Configuration extraction tool for XWorm RAT Client. Tested on XWorm 3.1.
Research on code virtualization in .NET [WIP]
Defanger is a Notepad++ plugin that defangs/refangs malicious IOCs.
SpyCore - Windows Malicious FIle Scanner (Distributes)
A C# based tool for analysing malicious OneNote documents
Add a description, image, and links to the malware-analysis topic page so that developers can more easily learn about it.
To associate your repository with the malware-analysis topic, visit your repo's landing page and select "manage topics."