665 Open source projects that are alternatives of or similar to Malconfscan

Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"

Cuckoo Sandbox plugin for extracts configuration data of known malware

Awesome hacking is an awesome collection of hacking tools.

An advanced memory forensics framework

Allows you to quickly query a Windows machine for RAM artifacts

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

Malware Behavior Analyzer

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

Volatility Explorer Suit

Malware indetectable, with AV bypass techniques, anti-disassembly, etc.

Crypter - Python3 based builder and ransomware compiled to Windows executable using PyInstaller

InfectPE - Inject custom code into PE file [This project is not maintained anymore]

Remot3d: is a simple tool created for large pentesters as well as just for the pleasure of defacers to control server by backdoors

Android Apps, Roms and Platforms for Pentesting

Binary instrumentation framework based on FRIDA

Volatility plugins developed and maintained by the community

Script to facilitate different functions and checks

Cuckoo Sandbox Dockerfile

Yara Based Detection Engine for web browsers

Wipe files and drives securely with randoms ASCII dicks

👻 RAT (Remote Access Trojan) - Silent Botnet - Full Remote Command-Line Access - Download & Execute Programs - Spread Virus' & Malware

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

A wrapper library around native windows sytem APIs

🐺 Malware analysis platform

iOS 任务调度器，为 CPU 和内存减负（用于性能优化）

A comprehensive binary emulation and instrumentation platform.

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Crypto Ransomware made with: - Go for encryption and decryption - PHP/MySQL for saving and retrieving keys.

YARA malware query accelerator (web frontend)

Research code & papers from members of vx-underground.

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

TeleShadow - Telegram Desktop Session Stealer (Windows)

Android performance test

A C2 project that controls a self-propagating MS17-010 worm.

Golang malware development framework

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

🔑 Decrypt chromium based browsers passwords, cookies, credit cards, history, bookmarks, autofill. Version > 80 is supported.

A small tool for automatically detecting the [controller, view memory leak] in the project. 一款用于自动检测项目中【控制器内存泄漏，View 内存泄漏】的小工具，支持 ObjC，Swift。

Adds the ability to send CarrierWave uploads to Attachment Scanner for virus and malware prevention.

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

A Python RESTful API framework for online malware analysis and threat intelligence services.

Capstone: Keylogger Trojan

🐺 Malware analysis platform

Code for my blog post on using S2E for malware analysis

A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)

A tool for forensic file system reconstruction.

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

Extract BITS jobs from QMGR queue and store them as CSV records

Framework for building Windows malware, written in C++

A simple, fully python ransomware PoC

A Python memory profiler for data processing and scientific computing applications

Malware hashes for open source projects.

Constant-complexity deterministic memory allocator (heap) for hard real-time high-integrity embedded systems

Clusters and elements to attach to MISP events or attributes (like threat actors)

Extract AutoIt scripts embedded in PE binaries

👨🏻‍💻 A great tool for Ethical Hackers, a malware programmed with Backdoor and Keylogger.