Giters
Willi Ballenthin (williballenthin)

williballenthin

Geek Repo

973

followers

62

following

270

stars

Company:@mandiant

Home Page:http://www.williballenthin.com/

Github PK Tool:Github PK Tool

Willi Ballenthin's repositories

python-evtx

Pure Python parser for Windows Event Log files (.evtx)

Language:PythonLicense:Apache-2.0Stargazers:680Issues:42Issues:72

python-registry

Pure Python parser for Windows Registry hives.

Language:PythonLicense:Apache-2.0Stargazers:419Issues:37Issues:63

INDXParse

Tool suite for inspecting NTFS artifacts.

Language:PythonLicense:Apache-2.0Stargazers:206Issues:20Issues:37

shellbags

Cross-platform, open-source shellbag parser

Language:PythonLicense:Apache-2.0Stargazers:148Issues:16Issues:13

idawilli

IDA Pro resources, scripts, and configurations

Language:PythonLicense:Apache-2.0Stargazers:110Issues:12Issues:0

lancelot

intel x86(-64) code analysis library that reconstructs control flow

Language:RustLicense:Apache-2.0Stargazers:92Issues:7Issues:120

python-evt

Pure Python parser for classic Windows Event Log files (.evt)

Language:PythonLicense:Apache-2.0Stargazers:42Issues:5Issues:2

viv-utils

Utilities for working with vivisect

Language:PythonLicense:Apache-2.0Stargazers:19Issues:5Issues:16

wevt_template

extract and parse WEVT_TEMPLATEs from PE files

Language:RustLicense:Apache-2.0Stargazers:17Issues:4Issues:0

vivisect

please use https://github.com/fireeye/vivisect instead

Language:PythonLicense:Apache-2.0Stargazers:16Issues:3Issues:0

ucutils

Convenience routines for working with the Unicorn emulator in Python

Language:PythonLicense:Apache-2.0Stargazers:9Issues:0Issues:0

dotfiles

Local configuration files for various Linux tools

Language:ShellStargazers:5Issues:4Issues:9

ida-graph-exporter

Layout-preserving graph view exporter plugin for IDA Pro

Language:HTMLLicense:MITStargazers:3Issues:1Issues:0

flare-floss

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Language:PythonLicense:Apache-2.0Stargazers:2Issues:1Issues:3

williballenthin.com

Source for my personal website

Language:HTMLStargazers:2Issues:0Issues:0

zydis-wasm

example project with zydis targetting wasm

Language:RustStargazers:2Issues:2Issues:3

Adv360-Pro-ZMK

Production repository for the all-new Advantage360 Professional using ZMK engine

Language:ShellLicense:MITStargazers:1Issues:1Issues:0

binaryninja-api

Public API, examples, documentation and issues for Binary Ninja

Language:C++License:MITStargazers:1Issues:1Issues:0

dnfile

Parse .NET executable files.

Language:PythonLicense:MITStargazers:1Issues:1Issues:9

arduino-T6A04A

Arduino display driver for the T6A04A monochrome LCD driver used in TI-83 graphing calculators

Language:C++License:Apache-2.0Stargazers:0Issues:2Issues:0

binexport

Export disassemblies into Protocol Buffers

License:Apache-2.0Stargazers:0Issues:0Issues:0

dnfile-testfiles

Test data for dnfile

Stargazers:0Issues:1Issues:0

mquery

YARA malware query accelerator (web frontend)

Language:PythonLicense:AGPL-3.0Stargazers:0Issues:1Issues:0

nixpkgs

Nix Packages collection

Language:NixLicense:MITStargazers:0Issues:1Issues:0

textual

Textual is a Rapid Application Development framework for Python. Build sophisticated user interfaces with a simple Python API. Run your apps in the terminal and (coming soon) a web browser!

Language:PythonLicense:MITStargazers:0Issues:1Issues:0

ursadb

Trigram database written in C++, suited for malware indexing

Language:C++License:BSD-3-ClauseStargazers:0Issues:1Issues:0

zycore-c

Internal library providing platform independent types, macros and a fallback for environments without LibC.

Language:CLicense:MITStargazers:0Issues:1Issues:0

zydis

Fast and lightweight x86/x86-64 disassembler and code generation library

Language:CLicense:MITStargazers:0Issues:1Issues:0

zydis-rs

Zydis Rust Bindings (work in progress)

Language:RustLicense:MITStargazers:0Issues:0Issues:0

zydis-rs-issue-29

Language:RustStargazers:0Issues:2Issues:0