356 Open source projects that are alternatives of or similar to Al Khaser

This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools

ice9 - is anticheat based on usermode tricks and undocumented methods , builded as dll for loading trought the shibari framework

Template-Driven AV/EDR Evasion Framework

ProTecT is an MS-DOS packer. While this packer is outdated, it uses a number of interesting anti-analysis techniques that are still relevant today.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

AndrODet: An Adaptive Android Obfuscation Detector

Malware hashes for open source projects.

LD_PRELOAD rootkit

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture

Source code of Claw Key logger previously sold on HackForums

著作《Windows APT Warfare：惡意程式前線戰術指南》各章節技術實作之原始碼內容

A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)

My personal Automated Malware Analysis Sandboxes and Services

Using this tool, You can capture all WiFi Passwords stored on Windows Computer and mail them to your email account!

Simple Malware Downloader

Extract AutoIt scripts embedded in PE binaries

A complete Grabber, sending data to a TCP server that you have to host and stocking all in a database.

Volatility plugins developed and maintained by the community

Simple prepender virus written in Rust

Malware sample exchange system and API intended for Anti-Virus companies and researchers.

Collection of phishing and malicious links that focuses on Steam and Discord scams.

Chrome Crusader

Adds the ability to send CarrierWave uploads to Attachment Scanner for virus and malware prevention.

Robo Thief is a software for steal telegram session .

Browser extension adware (showHomebrewOverlayOuter)

Virus Package ( For Educational Purposes )

Code for my blog post on using S2E for malware analysis

Generate YARA rules for OOXML documents.

A C2 project that controls a self-propagating MS17-010 worm.

Research on malware creation and protection

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

Malware Machine Learning

A set of scripts to detect updates of Microsoft (TM) Windows (TM) OS which harm users' privacy and uninstall them

Debian packaging of Linux Malware Detect (https://github.com/rfxn/linux-malware-detect)

Yara Based Detection Engine for web browsers

Collecting IOCs posted on Twitter

👨🏻‍💻 A great tool for Ethical Hackers, a malware programmed with Backdoor and Keylogger.

恶意软件原理图

YARA malware query accelerator (web frontend)

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

A Simple PE File Heuristics Scanners

Malice AntiVirus Plugins

🐺 Malware analysis platform

🛡 List of categorized undesired hosts

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

One of the few malware collection

TeleShadow - Telegram Desktop Session Stealer (Windows)

Malware similarity platform with modularity in mind.

👁‍🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.

Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of various anti-debug tricks, their implementation, and recommendations of how to mitigate the each trick.

Python-based spyware for Windows that logs the foreground window activites, keyboard inputs. Furthermore it is able to take screenshots and and run shell commands in the background.

Crypto Ransomware made with: - Go for encryption and decryption - PHP/MySQL for saving and retrieving keys.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Process Hacker 2 hiding from external applications

InfectPE - Inject custom code into PE file [This project is not maintained anymore]

Remot3d: is a simple tool created for large pentesters as well as just for the pleasure of defacers to control server by backdoors

Script to facilitate different functions and checks