Configuration Extractor for BlackCat Ransomware

In this repository, I will store my scripts that I create to automate some processes during some Reverse Engineering tasks. Some scripts are just code exercises, the main topic of which is reverse engineering.

Netwalker Ransomware Config Extractor

Configuration Extractor for the Linux variant of REvil Ransomware

A collection of malware config extractors I built

Static configuration extractor for DanaBot (main component)

Configuration Extractor for Warzone RAT

A powerful tool for scanning and cloning Git repositories with exposed .git/config files

Static configuration extractor for Hancitor Loader

A crude Config Extractor for IcedID second stage Loaders (Zero2Auto Week 0x02)

A lightweight Telegram bot that monitors tria.ge for new malware submissions, extracts family, C2, and config data, and delivers structured reports with safely encoded samples to individuals or group topics.

Configuration Extractor for the Windows variant of BlackMatter Ransomware

Static configuration extractor for the ESXI/Linux variant of BlackMatter Ransomware

QuasarRecovery is a config recovery from a builded binary.