Yaraprocessor
Yaraprocessor allows for scanning data streams in unique ways and dynamic scanning of payloads from network packet captures.
CFR is a Java decompiler that can decompile modern Java features up to Java 14, written entirely in Java 6, making it compatible across different Java versions. It can also decompile class files from other JVM languages back into Java. To use, run the specific version jar with the class name(s) you want to decompile or provide a jar path to decompile the entire jar and add --outputdir /tmp/putithere to emit files.
Yaraprocessor allows for scanning data streams in unique ways and dynamic scanning of payloads from network packet captures.
A de-obfuscator for M/o/Vfuscator, a notorious obfuscator, designed to reverse the effects of M/o/Vfuscator's obfuscation.
Java decompiler GUI tool for Procyon under Apache License.
An open-source binary debugger for Windows with a comprehensive plugin system for malware analysis and reverse engineering.
A payload creation framework for the retrieval and execution of arbitrary CSharp source code.
A collection of Yara rules for detecting malware evasion techniques