该仓库手机恶意软件源码,以不同编程语言、不同平台上实现
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
翻译 - 扫描所有正在运行的进程。识别并转储各种潜在的恶意植入(替换/植入的 PE、shellcode、挂钩、内存中的补丁)。
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with...
Binary instrumentation framework based on FRIDA
翻译 - 基于FRIDA的二进制检测框架
Emotet detection tool for Windows OS
翻译 - Windows OS的Emotet检测工具
DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
翻译 - DrSemu-基于动态行为的恶意软件检测和分类工具[POC项目]
Yet Another Memory Analyzer for malware detection