eset / Volatility Browserhooks
Licence: bsd-2-clause
Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
Stars: ✭ 36
Programming Languages
python
139335 projects - #7 most used programming language
Labels
Projects that are alternatives of or similar to Volatility Browserhooks
csbd
The repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"
Stars: ✭ 20 (-44.44%)
Mutual labels: malware-detection
Medusa
Binary instrumentation framework based on FRIDA
Stars: ✭ 258 (+616.67%)
Mutual labels: malware-detection
Dagda
a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
Stars: ✭ 820 (+2177.78%)
Mutual labels: malware-detection
minerchk
Bash script to Check for malicious Cryptomining
Stars: ✭ 36 (+0%)
Mutual labels: malware-detection
Reversinglabs Yara Rules
ReversingLabs YARA Rules
Stars: ✭ 280 (+677.78%)
Mutual labels: malware-detection
Stoq
An open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+877.78%)
Mutual labels: malware-detection
Malware-Detection-Tools
A list of awesome malware detection tools
Stars: ✭ 30 (-16.67%)
Mutual labels: malware-detection
Drltrace
Drltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (+683.33%)
Mutual labels: malware-detection
Malwaresourcecode
Collection of malware source code for a variety of platforms in an array of different programming languages.
Stars: ✭ 8,666 (+23972.22%)
Mutual labels: malware-detection
Edge2Guard
Code for PerCom Workshop paper title 'Edge2Guard: Botnet Attacks Detecting Offline Models for Resource-Constrained IoT Devices'
Stars: ✭ 16 (-55.56%)
Mutual labels: malware-detection
ShonyDanza
A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (+138.89%)
Mutual labels: malware-detection
Fcl
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Stars: ✭ 409 (+1036.11%)
Mutual labels: malware-detection
Ransomware detection
🔄 Ransomware recovery app for Nextcloud
Stars: ✭ 16 (-55.56%)
Mutual labels: malware-detection
Emocheck
Emotet detection tool for Windows OS
Stars: ✭ 334 (+827.78%)
Mutual labels: malware-detection
Machine Learning Approach For Malware Detection
A Machine Learning approach for classifying a file as Malicious or Legitimate
Stars: ✭ 35 (-2.78%)
Mutual labels: malware-detection
Virustotal Tools
Submits multiple domains to VirusTotal API
Stars: ✭ 29 (-19.44%)
Mutual labels: malware-detection
Apklab
Android Reverse-Engineering Workbench for VS Code
Stars: ✭ 470 (+1205.56%)
Mutual labels: malware-detection
volatility-browserhooks
Volatility-browserhooks is a http://www.volatilityfoundation.org[Volatility Framework] plugin to detect various types of hooks as performed by recent banking Trojans.
Usage
- Move
browserhooks.py
tovolatility/plugins/malware
in the Volatilty Framework path. - Run:
python vol.py -f dump_from_compromised_windows_system.vmem --profile=Win7SP1x64 browserhooks (-D _store_mods)
Authors
- Peter Kálnai <peter.kalnai @_eset.cz>
- Michal Poslušný <michal.poslusny @_eset.cz>
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].