Detect silent (unwanted) changes to files on your system

Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.

Pythonic ransomware proof of concept.

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

DDoor - cross platform backdoor using dns txt records

Anteater - CI/CD Gate Check Framework

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Domains Blocklist for Squid-Cache

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

Repository containting original and decompiled files of TRISIS/TRITON/HATMAN malware

Free Malware Training Datasets for Machine Learning

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

A merged collection of hosts from reputable sources. #StayEnergized!

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

ipsets dynamically updated with firehol's update-ipsets.sh script

Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provided are code samples, signature recommendations and countermeasures within each category for the described techniques.

Qiling Advanced Binary Emulation Framework

Quickly and easily install, uninstall, and set up automatic updates for any of Steven Black's unified hosts files.

Sandbox for automated Linux malware analysis.