Top 344 malware open source projects

a simple hidden silent XMR miner.

💻⚠️ A curated collection of awesome malware, botnets, and other post-exploitation tools.

Wifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.

An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.

🔥 Modern command line tool for malware creation on Windows

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

Extensible Red Team Framework

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

IlluminateJS is a static JavaScript deobfuscator

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

A ctypes powered python keylogger.

Various scripts for different malware families

Seven different DLL injection techniques in one single project.

A powerful C keylogger for Windows.

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox and it is able to scan Android devices against VT and HA.

To block the malware domains of coin-hive systemwide.

DNS filter-/blocklists | safe. private. clean. browsing!

🐛 Malware Sinkhole List in various formats

VirusTotal Wanna Be - Now with 100% more Hipster

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Detect potentially malicious PHP files

Telegram Desktop Session Stealer

Deobfuscation and analysis of PHP malware captured by a WordPress honey pot

Malware Data Science Reading Diary / Notes

Windows Rootkit written in Python

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

Curated list of awesome cybersecurity companies and solutions.

Malware Classifier From Network Captures

Trigram database written in C++, suited for malware indexing

Bringing you the best of the worst files on the Internet.

Saydog Framework

Executables created while writing "Introduction to Manual Backdooring".

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Automated Cyber Offense

A Remote Access Tool using Google Apps Script as the proxy for command and control.

APTnotes data

Code repository for the paper "Adversarial Deep Learning for Robust Detection of Binary Encoded Malware"

Telegram RAT written in Python

Collection of scripts for different malware analysis tasks

XOR encryption, malware crypter

De-obfuscate and reverse engineer PHP malware

Code developed to steal certain browser config files (history, preferences, etc)

Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.

Example Loader to be used as a learning resource for people interested in how commercially available malware is made on a very basic level

Malware related code

Block ads and malware via local DNS server

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

NOT MY CODE! Zeus trojan horse - leaked in 2011, I am not the author. This repository is for study purposes only, do not message me about your lame hacking attempts.

CLI tool to analyze PE files

Angst is the first python malware to have its own plugin system allowing for quick and easy account takeover. Along with its ability for easy plugin integration it has incredibly low detections.

Malcom - Malware Communications Analyzer

Norimaci is a simple and lightweight malware analysis sandbox for macOS

[Solo para programadores] Troyano espía | Keylogger solo para Windows, se replica en el sistema y se inicia automaticamente al iniciar sesión. | Envío de registro mediante [Base de Datos], [Gmail] o [BotTelegram].

Another attack on wordpress 4.8

Indicators of Compromises (IOC) of our various investigations

Submits multiple domains to VirusTotal API

njRAT C# Stub - Fixed For PowerShell

A Python tool that downloads IP block lists from various sources and builds configurations for network equipments and firewalls.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.