FIDLA sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research
Stars: ✭ 421 (+175.16%)
Mutual labels: malware
malware api classMalware dataset for security researchers, data scientists. Public malware dataset generated by Cuckoo Sandbox based on Windows OS API calls analysis for cyber security researchers
Stars: ✭ 134 (-12.42%)
Mutual labels: malware
binary-auditing-solutionsLearn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.
Stars: ✭ 61 (-60.13%)
Mutual labels: malware
Kernel-dll-injectorKernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Stars: ✭ 256 (+67.32%)
Mutual labels: malware
DFIR Resources REvil KaseyaResources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
Stars: ✭ 172 (+12.42%)
Mutual labels: malware
Abused-Legitimate-ServicesCloud, CDN, and marketing services leveraged by cybercriminals and APT groups
Stars: ✭ 42 (-72.55%)
Mutual labels: malware
Runpe In MemoryRun a Exe File (PE Module) in memory (like an Application Loader)
Stars: ✭ 249 (+62.75%)
Mutual labels: malware
Malware-CollectionSource codes of malwares, stress tests etc. for computer.
Stars: ✭ 27 (-82.35%)
Mutual labels: malware
miraiThe Mirai malware modified for use on NCL/a virtual/simulated environment.
Stars: ✭ 32 (-79.08%)
Mutual labels: malware
unprotectUnprotect is a python tool for parsing PE malware and extract evasion techniques.
Stars: ✭ 75 (-50.98%)
Mutual labels: malware
windows-defenderMalice Windows Defender AntiVirus Plugin
Stars: ✭ 31 (-79.74%)
Mutual labels: malware
IAT APIAssembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
Stars: ✭ 63 (-58.82%)
Mutual labels: malware
mkpolyA simple polymorphic engine
Stars: ✭ 28 (-81.7%)
Mutual labels: malware
VX-APICollection of various malicious functionality to aid in malware development
Stars: ✭ 904 (+490.85%)
Mutual labels: malware
ioc-fangerFang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Stars: ✭ 47 (-69.28%)
Mutual labels: malware
rhinoAgile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors
Stars: ✭ 49 (-67.97%)
Mutual labels: malware
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+83.66%)
Mutual labels: malware
kiteshieldPacker/Protector for x86-64 ELF binaries on Linux
Stars: ✭ 71 (-53.59%)
Mutual labels: malware
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-88.24%)
Mutual labels: malware
OrcaAdvanced Malware with multifeatures written in ASM/C/C++ , work on all windows versions ! (uncompleted)
Stars: ✭ 184 (+20.26%)
Mutual labels: malware