319 Open source projects that are alternatives of or similar to Malware Indicators

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Trigram database written in C++, suited for malware indexing

A SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.

Single-file minimal C# IoC container

Distributed malware processing framework based on Python, Redis and MinIO.

Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain names, known file headers, interesting strings, etc). It can also crack malware obfuscation such as XOR, ROL, etc by bruteforcing and checking for those patterns.

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

ioc2rpz is a place where threat intelligence meets DNS.

模拟Spring框架，实现IOC,AOP

A command line tool to find malwares on http://openmalware.org

hiboot is a high performance web and cli application framework with dependency injection support

This repository contains all relevant information about Unity Container suit

The educational Animus malware

Sophos-originated indicators-of-compromise from published reports

Telegram RAT written in Python

Extremely powerful Inversion of Control (IoC) container for Node.JS

Various Yara signatures (possibly to be included in a release later).

📐 Ts.ED is a Node.js and TypeScript framework on top of Express to write your application with TypeScript (or ES6). It provides a lot of decorators and guideline to make your code more readable and less error-prone.

Hangfire job activator based on Autofac IoC container

🦄 lightweight (<1kb) inversion of control javascript library for dependency injection written in typescript

CLI tool to analyze PE files

Malware repository component for samples & static configuration with REST API interface.

InversifyJS is a lightweight inversion of control (IoC) container for TypeScript and JavaScript apps. An IoC container uses a class constructor to identify and inject its dependencies. InversifyJS has a friendly API and encourages the usage of the best OOP and IoC practices.

Puresharp is a Framework that provides the essential APIs (AOP, IOC, etc...) to productively build high quality (.NET 4.5.2+ & .NET Core 2.1+) applications through reliability, scalability and performance without no compromise

A boilerplate ASP.NET Core project, including a sample employee shift scheduler app

Malagu Development Framework (QQ: 1013685855 钉钉群：31992376)

Operation Wocao - Indicators of Compromise

A binary analysis framework

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Tools for hunting for threats.

Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.

Use Microsoft.Extensions.DependencyInjection to resolve xUnit test cases.

Builds malware analysis Windows VMs so that you don't have to.

Collecting & Hunting for IOCs with gusto and style

Dependency Injection and IoC framework for PHP

Parse YARA rules and operate over them more easily.

.NET 5 Nuget Packages.

Sandboxed Execution Environment

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Makes things cross-platform

基于 IoC 的 Go 后端一站式开发框架 🚀

Program for determining types of files for Windows, Linux and MacOS.

Lightweight dependency injection container for Unity

Container-agnostic constructor injection mixin

Scripts for the Ghidra software reverse engineering suite.

Hasor是一套基于 Java 语言的开发框架，区别于其它框架的是 Hasor 有着自己一套完整的体系，同时还可以和先有技术体系做到完美融合。它包含：IoC/Aop容器框架、Web框架、Jdbc框架、RSF分布式RPC框架、DataQL引擎，等几块。

Performance comparison of .NET IoC containers

A modular Python application to pull intelligence about malicious files

A static analyzer for PE executables.

Guidance for mitigation web shells. #nsacyber

Extract indicators of compromise from text, including "escaped" ones.

This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant yara rules and ids signatures to detect these indicators.

基于EF Core的Code First模式的DotNetCore快速开发框架，其中包括DBContext、IOC组件autofac和AspectCore.Injector、代码生成器（也支持DB First）、基于AspectCore的memcache和Redis缓存组件，以及基于ICanPay的支付库和一些日常用的方法和扩展，比如批量插入、更新、删除以及触发器支持，当然还有demo。欢迎提交各种建议、意见和pr~

FAME Automates Malware Evaluation

Various scripts for different malware families

DIE engine

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.