stadeo
Deobfuscator
An analysis toolset designed to understand and reverse-engineer malicious software using control-flow-flattening and string deobfuscation techniques.
Control-flow-flattening and string deobfuscator
148 stars
6 watching
15 forks
Language: Python
last commit: about 3 years ago control-flowdeobfuscationdeobfuscatoremotetidaida-proidapythonmalwaremiasmpythonreverse-engineeringstantinkostrings
Related projects:
| Repository | Description | Stars |
|---|---|---|
 alxs009/panda-deobfuscator | A tool for analyzing and deobfuscating binary executables by manipulating their code and data structures | 5 |
 mrphrazer/r2con2020_deobfuscation | Automated deobfuscation tool using symbolic execution and SMT solving to remove obfuscated code from malware | 76 |
 jnraber/virtualdeobfuscator | Analyzes malware runtraces to remove virtual machine-based protections and extract the original binary's bytecode instructions | 133 |
 holly-hacker/eazfixer | A tool for deobfuscating Eazfuscator-obfuscated .NET assemblies | 377 |
 leetonidas/demovfuscator | Recovering control flow from movfuscated binaries by analyzing high-level invariants | 709 |
| mrphrazer/hitb2021ams_deobfuscation | Automated deobfuscation of malware code using symbolic execution and simplification techniques | 72 |
 dissectmalware/batch_deobfuscator | Deobfuscates batch scripts by substituting encoded strings and escaping characters. | 150 |
 gdbinit/evilquest_deobfuscator | A tool for decrypting and deobfuscating strings from the EvilQuest/ThiefQuest malware | 6 |
 xenocoderce/dnpdeobfuscator | Deobfuscation tool for .NET patching applications | 24 |
 antelox/fopo-php-deobfuscator | Tools to reverse-engineer and deobfuscate PHP files obfuscated by FOPO Obfuscator | 86 |
 perimeterx/restringer | A tool to deobfuscate and simplify JavaScript code | 349 |
 ioncodes/beeless | A tool used to deobfuscate Unity3D games by reversing the transformation of their code into an unreadable format. | 53 |
 airbus-seclab/bincat | A toolset for analyzing binary code with IDA integration and support for value, taint analysis, type reconstruction, and detection of use-after-free and double-free bugs. | 1,706 |
 rub-syssec/syntia | Deobfuscation framework using program synthesis to learn the semantics of obfuscated code | 302 |
 acsdavid97/dotnethooker | Tools for tracing and analyzing .NET function calls and argument dumps to aid in reverse engineering malware. | 5 |