PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.

Windows memory scanner for call stack spoofing detection, unbacked shellcode, injected DLLs and in-memory C2 implants.

Headless CLI reflection debugger for .NET assemblies with MCP server support

A malware analysis platform built in Rust

A learning-focused PE analysis engine with modular detectors, heuristic analysis, and HTML reporting.

Check your system integrity and scan for malicious files and registry keys

AI-Driven Malware Triage & Deep Swarm Inspection Platform

Malware sandbox for automated PE/ELF analysis with EDR integration and behavioral monitoring. Open-source alternative to CAPE sandbox.

Packer detection and unpacking workflow for malware analysis: UPX, ASPack, Themida, VMProtect, PE and ELF.

This script analyzes MZ-PE (MS-DOS) executable file

Provide a modular MCP server in C# for .NET reverse engineering with reflection-based tools and structured output in the dnSpy/ILSpy ecosystem.

Advanced malware analysis and honeypot framework for Windows with real-time dynamic & static analysis, network monitoring, and alerting.

PE import-table analysis for malware triage, API capability review, suspicious function flags, and detection leads.

memdump-toolkit

Static malware triage orchestrator for strings, PE imports, unpacking notes, IOC context, and LLM-ready reports.

Static malware analysis of 7 samples (EXE, DLL, Unknown) using PE analysis, YARA rules, entropy detection, and VirusTotal correlation. MS Cybersecurity Assignment - NUCES FAST.

Static PE analysis tool for red teamers. Parses headers, imports, exports, and sections.

PEar: PE Analysis in Ruby

Static PE malware analysis engine and explainable verdicts without execution