439 Open source projects that are alternatives of or similar to Kicomav

Sandboxed, Rust-based, Windows Defender Client

Wifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.

Free Malware Training Datasets for Machine Learning

👻计算机病毒以及相应的专杀工具的研发

Self-hosted VirusTotal / MetaDefender wannabe with API, demo UI and Scanners running in Docker.

💻⚠️ A curated collection of awesome malware, botnets, and other post-exploitation tools.

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

List of real-world threats against endpoint protection software

Як не стати кібер-жертвою

An obfuscation tool for Windows which instruments the Windows Loader into acting as an unpacking engine.

Ransom0 is a open source ransomware made with Python, designed to find and encrypt user data.

Detect silent (unwanted) changes to files on your system

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

🐐 GoAT (Golang Advanced Trojan) is a trojan that uses Twitter as a C&C server

A collaborative review of the emerging COVID-19 literature. Join the chat here:

ipsets dynamically updated with firehol's update-ipsets.sh script

Extensible Red Team Framework

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

IlluminateJS is a static JavaScript deobfuscator

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

Repository containting original and decompiled files of TRISIS/TRITON/HATMAN malware

The project where literally anything* goes.

A ctypes powered python keylogger.

Various scripts for different malware families

Automatically generate AV byte signatures from sets of similar binaries.

ClamAV Development - FAQ is here: https://github.com/Cisco-Talos/clamav-faq

Seven different DLL injection techniques in one single project.

Allows you to quickly query a Windows machine for RAM artifacts

Sandbox for automated Linux malware analysis.

Wolves Among the Sheep

A powerful C keylogger for Windows.

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox and it is able to scan Android devices against VT and HA.

Python network worm that spreads on the local network and gives the attacker control of these machines.

To block the malware domains of coin-hive systemwide.

DNS filter-/blocklists | safe. private. clean. browsing!

A merged collection of hosts from reputable sources. #StayEnergized!

Automated Use Case Testing

Huorong Internet Security vulnerabilities 火绒安全软件漏洞

A full-featured home hosted Cloud Drive, Personal Assistant, App Launcher, File Converter, Streamer, Share Tool & More!

🐛 Malware Sinkhole List in various formats

Simple obfuscation tool

My implementation of enSilo's Process Doppelganging (PE injection technique)

Anteater - CI/CD Gate Check Framework

A C/C++ implementation of Microsoft's Antimalware Scan Interface

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Telegram Desktop Session Stealer

Multi-arch dockerized open source antivirus for use with file sharing containers, REST API or TCP.

A simple way for detection the remote user's antivirus

Deobfuscation and analysis of PHP malware captured by a WordPress honey pot

dnxfirewall (dad's next-gen firewall), a pure Python next generation firewall built on top of Linux kernel/netfilter.

Runtime memory analysis framework to identify Android malware

Malware Data Science Reading Diary / Notes

Windows Rootkit written in Python

Program Uses Thread Execution Hijacking To Inject Native Shell-code Into a Standard Win32 Application

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

Undetectable Windows Payload Generation

Qiling Advanced Binary Emulation Framework

Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provided are code samples, signature recommendations and countermeasures within each category for the described techniques.

Keep track of the labs from the book "Practical Malware Analysis"