search

mandiant / flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.
Apache License 2.0
6.48k stars 906 forks source link

Add Java-Deobfuscator #222

Closed jdmastermy closed 4 years ago

jdmastermy commented 5 years ago

Recently I have analyzed lots of java RAT (due to cross-platform capability) with multi layer obfuscations and I found out Java-Deobfuscator do the job greater than other tools. They come with GUI too in case user having issue to setup the config file.

Java-Deobfuscator https://github.com/java-deobfuscator/deobfuscator

GUI https://github.com/java-deobfuscator/deobfuscator-gui

opticoax747 commented 4 years ago

Inside PDFStreamDumper there is some JavaCode Analysis...also maybe jsunpack or js-detox

MalwareMechanic commented 4 years ago

@jdmaster85 We've added a package for Java-Deobfuscator-Gui. You can install via choco install java-deobfuscator-gui.fireeye