DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+355.77%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+2580.77%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+32.69%)
malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (+100%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+321.15%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+576.92%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-55.77%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (+32.69%)
yaraMalice Yara Plugin
Stars: ✭ 27 (-48.08%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+300%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (+180.77%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (+265.38%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+1821.15%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+14994.23%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (-19.23%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+850%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+109.62%)
MalwaresourcecodeCollection of malware source code for a variety of platforms in an array of different programming languages.
Stars: ✭ 8,666 (+16565.38%)
MalboxesBuilds malware analysis Windows VMs so that you don't have to.
Stars: ✭ 900 (+1630.77%)
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (+796.15%)
WdbgarkWinDBG Anti-RootKit Extension
Stars: ✭ 450 (+765.38%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+711.54%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+482.69%)
csbdThe repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"
Stars: ✭ 20 (-61.54%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-65.38%)
Malware SamplesA collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
Stars: ✭ 565 (+986.54%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+440.38%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (+80.77%)
FclFCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Stars: ✭ 409 (+686.54%)
ApklabAndroid Reverse-Engineering Workbench for VS Code
Stars: ✭ 470 (+803.85%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (+471.15%)
mazMalware Analysis Zoo
Stars: ✭ 25 (-51.92%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+1380.77%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-67.31%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+638.46%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+1428.85%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+665.38%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+34.62%)
MeltingPotA tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
Stars: ✭ 23 (-55.77%)
MalwareDatabaseMalware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)
Stars: ✭ 21 (-59.62%)
TweetFeedCollecting IOCs posted on Twitter
Stars: ✭ 181 (+248.08%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (-21.15%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (-40.38%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+528.85%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+7332.69%)
MedusaBinary instrumentation framework based on FRIDA
Stars: ✭ 258 (+396.15%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+448.08%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (+490.38%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (+442.31%)
Virustotal ToolsSubmits multiple domains to VirusTotal API
Stars: ✭ 29 (-44.23%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+1175%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (+265.38%)