379 Open source projects that are alternatives of or similar to Blocklist Ipsets

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

Golang malware development framework

ThePhish: an automated phishing email analysis tool

A powerful C keylogger for Windows.

A curated list of awesome resources related to executable packing

A simple, fully python ransomware PoC

A command line hosts file editor in one portable script.

[Solo para programadores] Troyano espía | Keylogger solo para Windows, se replica en el sistema y se inicia automaticamente al iniciar sesión. | Envío de registro mediante [Base de Datos], [Gmail] o [BotTelegram].

Packer/Protector for x86-64 ELF binaries on Linux

Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.

Source codes of malwares, stress tests etc. for computer.

Automated Use Case Testing

A very aggressive filter-list that consolidates over 370 lists for use in AdGuard Home, Pi-Hole or similar.

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

NekRos is an Open-Source Ransomeware, with advanced Features, Which Looks Like Wannacry and Has C&C Server which can be Used to Retrive KEY

Indicators of Compromises (IOC) of our various investigations

Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.

Research code & papers from members of vx-underground.

An open-source, centralized HTTPS botnet

To block the malware domains of coin-hive systemwide.

A simple polymorphic engine

Cuckoo Sandbox Dockerfile

njRAT C# Stub - Fixed For PowerShell

The Mirai malware modified for use on NCL/a virtual/simulated environment.

A wrapper library around native windows sytem APIs

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

Awesome hacking is an awesome collection of hacking tools.

EAD: Elastic-Net Attacks to Deep Neural Networks via Adversarial Examples

Clusters and elements to attach to MISP events or attributes (like threat actors)

Malice Windows Defender AntiVirus Plugin

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Golang wrapper of ipset.

InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

🐛 Malware Sinkhole List in various formats

Run a Exe File (PE Module) in memory (like an Application Loader)

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

A Python-powered exploitation framework and botnet.

Malware samples, analysis exercises and other interesting resources.

YARA malware query accelerator (web frontend)

Cross Platform ELF analysis

Basic Multiplatform Remote Administration Tool - Xamarin

Simple obfuscation tool

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

🐐 GoAT (Golang Advanced Trojan) is a trojan that uses Twitter as a C&C server

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

A browser extension to block all visible likers of a tweet. – say NO to hate speech!

Windows Remote Administration Tool via Telegram. Written in Python

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Script to facilitate different functions and checks

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Python network worm that spreads on the local network and gives the attacker control of these machines.

Program Uses Thread Execution Hijacking To Inject Native Shell-code Into a Standard Win32 Application

Vxheaven.org website's mirror

Extensible Red Team Framework

Collection of scripts for different malware analysis tasks

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

SwitHak' Security Place for my Opinions and Work