Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (+140%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+418.18%)
AntidbgA bunch of Windows anti-debugging tricks for x86 and x64.
Stars: ✭ 177 (+221.82%)
Shed.NET runtime inspector
Stars: ✭ 229 (+316.36%)
BesafeBeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you
Stars: ✭ 21 (-61.82%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (+140%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: ✭ 148 (+169.09%)
LiefAuthors
Stars: ✭ 2,730 (+4863.64%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+278.18%)
SimpleatorSimpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Stars: ✭ 260 (+372.73%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (+458.18%)
PwndbgExploit Development and Reverse Engineering with GDB Made Easy
Stars: ✭ 4,178 (+7496.36%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-16.36%)
SojoboA binary analysis framework
Stars: ✭ 116 (+110.91%)
ApiscoutThis project aims at simplifying Windows API import recovery on arbitrary memory dumps
Stars: ✭ 146 (+165.45%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (+192.73%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (+245.45%)
ReplicaGhidra Analysis Enhancer 🐉
Stars: ✭ 194 (+252.73%)
Radare2UNIX-like reverse engineering framework and command-line toolset
Stars: ✭ 15,412 (+27921.82%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: ✭ 182 (+230.91%)
yara-rulesYara rules written by me, for free use.
Stars: ✭ 13 (-76.36%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (-43.64%)
MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Stars: ✭ 3,485 (+6236.36%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (+412.73%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+623.64%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+667.27%)
CapaThe FLARE team's open-source tool to identify capabilities in executable files.
Stars: ✭ 1,981 (+3501.82%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (+96.36%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+3743.64%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (+165.45%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (+245.45%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+5321.82%)
CmulatorCmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript
Stars: ✭ 197 (+258.18%)
Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (+232.73%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+309.09%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+298.18%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+330.91%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+25.45%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+27.27%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+494.55%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+98.18%)
Macbook《macOS软件安全与逆向分析》随书源码
Stars: ✭ 302 (+449.09%)
ApklabAndroid Reverse-Engineering Workbench for VS Code
Stars: ✭ 470 (+754.55%)
IdenlibidenLib - Library Function Identification [This project is not maintained anymore]
Stars: ✭ 322 (+485.45%)
MalcomMalcom - Malware Communications Analyzer
Stars: ✭ 988 (+1696.36%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+598.18%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+6927.27%)
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Stars: ✭ 2,026 (+3583.64%)
Flare VmNo description or website provided.
Stars: ✭ 3,201 (+5720%)
GefGEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢
Stars: ✭ 4,197 (+7530.91%)
StringsifterA machine learning tool that ranks strings based on their relevance for malware analysis.
Stars: ✭ 469 (+752.73%)
Makinmakin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Stars: ✭ 645 (+1072.73%)