1145 Open source projects that are alternatives of or similar to MalwareHashDB

🐺 Malware analysis platform

Bringing you the best of the worst files on the Internet.

🐺 Malware analysis platform

VirusTotal Wanna Be - Now with 100% more Hipster

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes

Malware Sample Sources

Modular file scanning/analysis framework

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

Personal compilation of APT malware from whitepaper releases, documents and own research

Submits multiple domains to VirusTotal API

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Malice AntiVirus Plugins

Signature base for my scanner tools

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

A curated list of awesome resources related to executable packing

A Python RESTful API framework for online malware analysis and threat intelligence services.

WinDBG Anti-RootKit Extension

A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)

Loki - Simple IOC and Incident Response Scanner

Android virtual machine and deobfuscator

FAME Automates Malware Evaluation

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

A Binary Genetic Traits Lexer Framework

Community modules for FAME

A curated list of awesome YARA rules, tools, and people.

Django application that performs SAST and Malware Analysis for Android APKs

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Hashes of infamous malware

Personal research and publication on malware families

Collection of scripts for different malware analysis tasks

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Java-layer Android Malware Simplifier

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

One of the few malware collection

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

yarGen is a generator for YARA rules

Defund the Police.

Defanged Indicator of Compromise (IOC) Extractor.

Malice Yara Plugin

YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.

Malware Machine Learning

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

Extract and aggregate threat intelligence.

Malcom - Malware Communications Analyzer

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

Collection of various malicious functionality to aid in malware development

Malware sample exchange system and API intended for Anti-Virus companies and researchers.

Citizen Lab Malware Reports

Malice Windows Defender AntiVirus Plugin

Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.

Search a filesystem for indicators of compromise (IoC).

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

A simple brute forcer written in GO for SHA1, SHA256, SHA512, MD5 and bcrypt