DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
MalwaresearchA command line tool to find malwares on http://openmalware.org
ApkfileAndroid app analysis and feature extraction library
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Sweetie DataThis repo contains logstash of various honeypots
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Visualize logsA Python library and command line tools to provide interactive log visualization.
Mwdb CoreMalware repository component for samples & static configuration with REST API interface.
SojoboA binary analysis framework
Awesome YaraA curated list of awesome YARA rules, tools, and people.
FileintelA modular Python application to pull intelligence about malicious files
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Malware FeedBringing you the best of the worst files on the Internet.
Owasp SeraphimdroidOWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.
TeleratTelegram RAT written in Python
DrebinDrebin - NDSS 2014 Re-implementation
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
RpotReal-time Packet Observation Tool
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
MalboxesBuilds malware analysis Windows VMs so that you don't have to.
AnimusThe educational Animus malware
YargenyarGen is a generator for YARA rules
SeeSandboxed Execution Environment
FameFAME Automates Malware Evaluation
Malware SamplesA collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
MalwaresourcecodeCollection of malware source code for a variety of platforms in an array of different programming languages.
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
WdbgarkWinDBG Anti-RootKit Extension
PevThe PE file analysis toolkit
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
SimplifyAndroid virtual machine and deobfuscator
StoqAn open source framework for enterprise level automated analysis.
Malware JailSandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
ColdfireGolang malware development framework
PolichombrCollaborative malware analysis framework
Phishing.databasePhishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
Vxug PapersResearch code & papers from members of vx-underground.
Freki🐺 Malware analysis platform
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
freki🐺 Malware analysis platform