assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (+176%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+15360%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-32%)
yaraMalice Yara Plugin
Stars: ✭ 27 (+8%)
malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (+316%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+2552%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+3896%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (+64%)
FileintelA modular Python application to pull intelligence about malicious files
Stars: ✭ 97 (+288%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+5476%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+180%)
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (+1764%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+1876%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+31296%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+2980%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (+1088%)
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Stars: ✭ 1,253 (+4912%)
DrebinDrebin - NDSS 2014 Re-implementation
Stars: ✭ 52 (+108%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: ✭ 182 (+628%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+11828%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (+660%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+776%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (+660%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+848%)
WdbgarkWinDBG Anti-RootKit Extension
Stars: ✭ 450 (+1700%)
PevThe PE file analysis toolkit
Stars: ✭ 422 (+1588%)
Malware SamplesA collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
Stars: ✭ 565 (+2160%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+1492%)
MalboxesBuilds malware analysis Windows VMs so that you don't have to.
Stars: ✭ 900 (+3500%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+3080%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+1436%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+176%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+1112%)
SojoboA binary analysis framework
Stars: ✭ 116 (+364%)
Mwdb CoreMalware repository component for samples & static configuration with REST API interface.
Stars: ✭ 125 (+400%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+1308%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (+544%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (+484%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (+276%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: ✭ 134 (+436%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+732%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-8%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (+68%)
Visualize logsA Python library and command line tools to provide interactive log visualization.
Stars: ✭ 128 (+412%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-28%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+1024%)
Kernel-dll-injectorKernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Stars: ✭ 256 (+924%)
WinappdbgWinAppDbg Debugger
Stars: ✭ 338 (+1252%)
Malware JailSandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
Stars: ✭ 349 (+1296%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+8356%)