Makinmakin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Stars: ✭ 645 (+239.47%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+72.11%)
SimpleatorSimpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Stars: ✭ 260 (+36.84%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+4031.05%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+425.79%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-75.79%)
MatireMalware Analysis, Threat Intelligence and Reverse Engineering: LABS
Stars: ✭ 55 (-71.05%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (-78.42%)
StringsifterA machine learning tool that ranks strings based on their relevance for malware analysis.
Stars: ✭ 469 (+146.84%)
Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (-3.68%)
DrebinDrebin - NDSS 2014 Re-implementation
Stars: ✭ 52 (-72.63%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (-63.68%)
CapaThe FLARE team's open-source tool to identify capabilities in executable files.
Stars: ✭ 1,981 (+942.63%)
Radare2UNIX-like reverse engineering framework and command-line toolset
Stars: ✭ 15,412 (+8011.58%)
FileintelA modular Python application to pull intelligence about malicious files
Stars: ✭ 97 (-48.95%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+47.89%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+15.26%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-87.89%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: ✭ 134 (-29.47%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+633.68%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (-30.53%)
yaraMalice Yara Plugin
Stars: ✭ 27 (-85.79%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (-50.53%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-91.05%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+248.95%)
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Stars: ✭ 1,253 (+559.47%)
ApiscoutThis project aims at simplifying Windows API import recovery on arbitrary memory dumps
Stars: ✭ 146 (-23.16%)
Android LkmsAndroid Loadable Kernel Modules - mostly used for reversing and debugging on controlled systems/emulators
Stars: ✭ 164 (-13.68%)
Android AnalysisGetting Genymotion & Burpsuite setup for Android Mobile App Analysis
Stars: ✭ 146 (-23.16%)
FernflowerUnofficial mirror of FernFlower Java decompiler (All pulls should be submitted upstream)
Stars: ✭ 2,380 (+1152.63%)
SteamkitSteamKit2 is a .NET library designed to interoperate with Valve's Steam network. It aims to provide a simple, yet extensible, interface to perform various actions on the network.
Stars: ✭ 1,926 (+913.68%)
TritonTriton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.
Stars: ✭ 1,934 (+917.89%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+1012.63%)
Native ShimA "shim" for loading native jni files for Android active debugging
Stars: ✭ 145 (-23.68%)
TwitterxKeeping Twitter for macOS alive with code injection
Stars: ✭ 187 (-1.58%)
Anno1800 Mod LoaderThe one and only mod loader for Anno 1800, supports loading of unpacked RDA files, XML merging and Python mods.
Stars: ✭ 161 (-15.26%)
Magisk Frida🔐 Run frida-server on boot with Magisk, always up-to-date
Stars: ✭ 144 (-24.21%)
XpeviewerPE file viewer/editor for Windows, Linux and MacOS.
Stars: ✭ 144 (-24.21%)
Sweetie DataThis repo contains logstash of various honeypots
Stars: ✭ 163 (-14.21%)
BinsnitchDetect silent (unwanted) changes to files on your system
Stars: ✭ 144 (-24.21%)
Ghidra DarkDark theme installer for Ghidra
Stars: ✭ 143 (-24.74%)
Dyld cache extractA macOS utility to extract dynamic libraries from the dyld_shared_cache of macOS and iOS.
Stars: ✭ 180 (-5.26%)
AndroidlibraryAndroid library to reveal or obfuscate strings and assets at runtime
Stars: ✭ 162 (-14.74%)
RematchREmatch, a complete binary diffing framework that is free and strives to be open source and community driven.
Stars: ✭ 141 (-25.79%)
WechatmagicianWechatMagician is a Xposed module written in Kotlin, that allows you to completely control your Wechat.
Stars: ✭ 1,739 (+815.26%)
Frida Ios Dumppull decrypted ipa from jailbreak device
Stars: ✭ 2,223 (+1070%)
IosreextensionA fast and elegant extension for VSCode used for iOSre projects.
Stars: ✭ 139 (-26.84%)
VegvisirA browser based GUI for **LLDB** Debugger.
Stars: ✭ 189 (-0.53%)
Xiaomi KettleXiaomi Kettle BLE protocol reverse-engineered
Stars: ✭ 187 (-1.58%)
Ssl Kill Switch2Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.
Stars: ✭ 2,420 (+1173.68%)
Jarvis"Just Another ReVersIng Suite" or whatever other bullshit you can think of
Stars: ✭ 137 (-27.89%)
Tastyworks apiAn unofficial, reverse-engineered Python API for tastyworks.
Stars: ✭ 138 (-27.37%)