malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (+50.72%)
yaraMalice Yara Plugin
Stars: ✭ 27 (-60.87%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-66.67%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+410.14%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+201.45%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+217.39%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (+175.36%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+1920.29%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+5501.45%)
mazMalware Analysis Zoo
Stars: ✭ 25 (-63.77%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-75.36%)
DrebinDrebin - NDSS 2014 Re-implementation
Stars: ✭ 52 (-24.64%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+0%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+1347.83%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (+111.59%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+243.48%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (+344.93%)
WinappdbgWinAppDbg Debugger
Stars: ✭ 338 (+389.86%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+2963.77%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+456.52%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (+308.7%)
Malware JailSandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
Stars: ✭ 349 (+405.8%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (+175.36%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+4221.74%)
WdbgarkWinDBG Anti-RootKit Extension
Stars: ✭ 450 (+552.17%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: ✭ 182 (+163.77%)
MedusaBinary instrumentation framework based on FRIDA
Stars: ✭ 258 (+273.91%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+615.94%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+313.04%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+476.81%)
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (+575.36%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (+133.33%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+511.59%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+11275.36%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+1015.94%)
Virustotal ToolsSubmits multiple domains to VirusTotal API
Stars: ✭ 29 (-57.97%)
FclFCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Stars: ✭ 409 (+492.75%)
ApklabAndroid Reverse-Engineering Workbench for VS Code
Stars: ✭ 470 (+581.16%)
Malware ResearchCode written as part of our various malware investigations
Stars: ✭ 281 (+307.25%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: ✭ 134 (+94.2%)
MalboxesBuilds malware analysis Windows VMs so that you don't have to.
Stars: ✭ 900 (+1204.35%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+1052.17%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (-40.58%)
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Stars: ✭ 1,253 (+1715.94%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+307.25%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+860.87%)
Visualize logsA Python library and command line tools to provide interactive log visualization.
Stars: ✭ 128 (+85.51%)
SojoboA binary analysis framework
Stars: ✭ 116 (+68.12%)
Mwdb CoreMalware repository component for samples & static configuration with REST API interface.
Stars: ✭ 125 (+81.16%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-73.91%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+373.91%)
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Stars: ✭ 2,026 (+2836.23%)
Malware SamplesA collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
Stars: ✭ 565 (+718.84%)
FileintelA modular Python application to pull intelligence about malicious files
Stars: ✭ 97 (+40.58%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (-39.13%)