93 Open source projects that are alternatives of or similar to Callobfuscator

Personal research and publication on malware families

Malware Sample Sources

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

Malware similarity platform with modularity in mind.

Collection of various malicious functionality to aid in malware development

🐺 Malware analysis platform

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

An open source framework for enterprise level automated analysis.

⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan

Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)

One of the few malware collection

APK/DEX detector for Windows, Linux and MacOS.

Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.

Java-layer Android Malware Simplifier

Android virtual machine and deobfuscator

Community modules for FAME

🐺 Malware analysis platform

Defund the Police.

Extract and aggregate threat intelligence.

BONOMEN - Hunt for Malware Critical Process Impersonation

This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

WinAppDbg Debugger

VirusTotal Full api

Python scripts for Malware Bazaar

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Citizen Lab Malware Reports

Defanged Indicator of Compromise (IOC) Extractor.

Jaws is an invisible programming language! Inject invisible code into other languages and files! Created for security research -- see blog post

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Lookup file hashes, domain names and IP addresses using various vendors to assist with triaging potential threats.

Research code & papers from members of vx-underground.

Write-ups for FireEye's FLARE-On challenges

WinDBG Anti-RootKit Extension

Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"

Code written as part of our various malware investigations

Malice Yara Plugin

Collection of almost 40.000 javascript malware samples

A Binary Genetic Traits Lexer Framework

A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.

BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)

Collection of malware source code for a variety of platforms in an array of different programming languages.

AssemblyLine 4 - File triage and malware analysis

Malware hashes for open source projects.

A curated list of awesome resources related to executable packing

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

Hashes of infamous malware

Malware Analysis Zoo

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

The PE file analysis toolkit

DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior

Malware Machine Learning

Personal compilation of APT malware from whitepaper releases, documents and own research

Golang malware development framework

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Modular file scanning/analysis framework

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

Collaborative malware analysis framework

Collecting IOCs posted on Twitter