ReFlutter
A framework for reverse engineering Flutter apps with modified Flutter library for dynamic analysis and traffic monitoring.
The base64_substring tool helps malware analysts search through base64-encoded samples by enumerating all possible base64 encodings for a given search term and generating a yara rule that checks those possibilities. To run an example, generate a yara rule that matches a base64-encoded file containing the term 'Application' by using the provided script. Further reading: 'Searching for Content in Base-64 Strings' by Lee Holmes.
A framework for reverse engineering Flutter apps with modified Flutter library for dynamic analysis and traffic monitoring.
A collaborative malware analysis framework with various features for automated analysis tasks.
dynStruct is a tool for monitoring memory accesses of an ELF binary and recovering structures of the original code.
Largest open collection of Android malware samples, with 298 samples and contributions welcome.
Identifies 137 malicious npm packages and gathers system information to a remote server.
Interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features