MultiAV2MultiAV scanner with Python and JSON REST API using Malice Docker AV Containers and Docker-Machine based Autoscaling
Stars: ✭ 30 (+76.47%)
antimalwareappAnti-malware for Android using machine learning
Stars: ✭ 206 (+1111.76%)
Pe SieveScans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Stars: ✭ 1,783 (+10388.24%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+1552.94%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (+1647.06%)
ArmorArmor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.
Stars: ✭ 228 (+1241.18%)
Securetea ProjectThe OWASP SecureTea Project provides a one-stop security solution for various devices (personal computers / servers / IoT devices)
Stars: ✭ 181 (+964.71%)
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (+258.82%)
inthewilddbHourly updated database of exploit and exploitation reports
Stars: ✭ 127 (+647.06%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+12941.18%)
AntiNETAnti-.NET Malware/Packers - Detect most .NET Packers (and some native) used for malware.
Stars: ✭ 25 (+47.06%)
Open.WinKeyboardHookA simple and easy-to-use .NET managed wrapper for Low Level Keyboard hooking.
Stars: ✭ 20 (+17.65%)
VeilVeil 3.1.X (Check version info in Veil at runtime)
Stars: ✭ 2,949 (+17247.06%)
cheatsheetThese are some of the commands which I use frequently during Malware Analysis and DFIR.
Stars: ✭ 23 (+35.29%)
Armadito AvArmadito antivirus main repository
Stars: ✭ 184 (+982.35%)
Excel-Timesheet⏰ This Add-In is used to produce a timesheet file with functionality to import your Google Timeline. The standard timesheet has options for start and end dates, day of week and default start, end and break times. The Google timeline options are start and end dates, UTC selection, daylight savings time parameters and title filter for timeline ent…
Stars: ✭ 25 (+47.06%)
Dnxfirewalldnxfirewall (dad's next-gen firewall), a pure Python next generation firewall built on top of Linux kernel/netfilter.
Stars: ✭ 174 (+923.53%)
subhook.nimsubhook wrapper for Nim https://github.com/Zeex/subhook
Stars: ✭ 15 (-11.76%)
VxsigAutomatically generate AV byte signatures from sets of similar binaries.
Stars: ✭ 139 (+717.65%)
Docker ClamavMulti-arch dockerized open source antivirus for use with file sharing containers, REST API or TCP.
Stars: ✭ 133 (+682.35%)
OSINTBookmarksOSINT Bookmarks for Firefox / Chrome / Edge / Safari
Stars: ✭ 34 (+100%)
Ergo Pe Av🧠 🦠 An artificial neural network and API to detect Windows malware, based on Ergo and LIEF.
Stars: ✭ 130 (+664.71%)
github-watchmanMonitoring GitHub for sensitive data shared publicly
Stars: ✭ 60 (+252.94%)
matrixmirror of https://mypdns.org/my-privacy-dns/matrix as it is obviously no longer safe to do Girhub nor have we no longer any trust in them. See https://mypdns.org/my-privacy-dns/porn-records/-/issues/1347
Stars: ✭ 32 (+88.24%)
DbgChildDebug Child Process Tool (auto attach)
Stars: ✭ 221 (+1200%)
Clamav DevelClamAV Development - FAQ is here: https://github.com/Cisco-Talos/clamav-faq
Stars: ✭ 1,301 (+7552.94%)
win7Yet another OS preview via web technologies focused on Microsoft Windows 7.
Stars: ✭ 93 (+447.06%)
KicomavKicomAV is an open source (GPL v2) antivirus engine designed for detecting malware and disinfecting it.
Stars: ✭ 227 (+1235.29%)
MalwaremultiscanSelf-hosted VirusTotal / MetaDefender wannabe with API, demo UI and Scanners running in Docker.
Stars: ✭ 204 (+1100%)
Judge-Jury-and-ExecutableA file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Stars: ✭ 66 (+288.24%)
Php Antimalware ScannerAMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.
Stars: ✭ 181 (+964.71%)
FindTheStupidWindowWindows API hooking project to log all the windows / UIs with the exact timestamp when they are opened.
Stars: ✭ 13 (-23.53%)
AvpwnList of real-world threats against endpoint protection software
Stars: ✭ 179 (+952.94%)
inbox-notifierGmail notifications instantly in the Windows taskbar
Stars: ✭ 55 (+223.53%)
Antimalware ResearchResearch on Anti-malware and other related security solutions
Stars: ✭ 163 (+858.82%)
clamfsClamFS is a FUSE-based user-space file system for Linux and BSD with on-access anti-virus file scanning
Stars: ✭ 29 (+70.59%)
IAT APIAssembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.
Stars: ✭ 63 (+270.59%)
IllacceptanythingThe project where literally anything* goes.
Stars: ✭ 1,756 (+10229.41%)
Hrcloud2A full-featured home hosted Cloud Drive, Personal Assistant, App Launcher, File Converter, Streamer, Share Tool & More!
Stars: ✭ 134 (+688.24%)
qradarUnofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.
Stars: ✭ 53 (+211.76%)
hooking-by-exampleA series of increasingly complex programs demonstrating function hooking on 64 bit Windows. Culminating in a program that hooks mspaint to make it always paint orange.
Stars: ✭ 144 (+747.06%)
Veil EvasionVeil Evasion is no longer supported, use Veil 3.0!
Stars: ✭ 1,678 (+9770.59%)
clamdGolang clamd (clamav daemon) client library
Stars: ✭ 23 (+35.29%)
Green Hat SuiteGreen-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.
Stars: ✭ 112 (+558.82%)
Simple-Antirootkit-SST-UnhookerThis is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
Stars: ✭ 31 (+82.35%)
ClamAV.ManagedClamAV bindings for the .NET Framework, Mono and PowerShell. ClamAV.Managed is a library written in C# for the .NET Framework and Mono, providing managed bindings for the libclamav interface. It includes ClamAV.Managed.PowerShell, a set of PowerShell cmdlets for ClamAV scanning. It comes with sample code for building a GUI virus scanner applicat…
Stars: ✭ 15 (-11.76%)
mhookA Windows API hooking library
Stars: ✭ 167 (+882.35%)
BlueTeam.LabBlue Team detection lab created with Terraform and Ansible in Azure.
Stars: ✭ 82 (+382.35%)
NativePayload CBTNativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)
Stars: ✭ 109 (+541.18%)