Papa Shango is a Linux process injection tool that uses ptrace() to inject shellcode into a running process. It allows you to write your payloads in assembler and does not care about NULL bytes. Here is an example of how to use it: `cat papa-shango shellcode > payload chmod +x payload ./payload <pid>`
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
FLARE-VM is a collection of software installation scripts for Windows systems designed for setting up and maintaining a reverse engineering environment on a virtual machine.
Compact C framework for analyzing suspected malware documents and detecting exploits and embedded executables.
RetDec is a versatile machine-code decompiler with support for various file formats and architectures.
A tool that generates Yara rules from training data using logistic regression and random forest classifiers.
Yaraprocessor allows for scanning data streams in unique ways and dynamic scanning of payloads from network packet captures.
Scans running processes for potentially malicious implants and dumps them.