malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (+352.17%)
yaraMalice Yara Plugin
Stars: ✭ 27 (+17.39%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+5960.87%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+1430.43%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+4243.48%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (+1808.7%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+3356.52%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (+0%)
Lw YaraYara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Stars: ✭ 78 (+239.13%)
ThreatKBKnowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Stars: ✭ 68 (+195.65%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (+1204.35%)
BinaryalertBinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
Stars: ✭ 1,125 (+4791.3%)
TweetFeedCollecting IOCs posted on Twitter
Stars: ✭ 181 (+686.96%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+1321.74%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+852.17%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (+804.35%)
MascA Web Malware Scanner
Stars: ✭ 74 (+221.74%)
DrebinDrebin - NDSS 2014 Re-implementation
Stars: ✭ 52 (+126.09%)
MalwaresourcecodeCollection of malware source code for a variety of platforms in an array of different programming languages.
Stars: ✭ 8,666 (+37578.26%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+2047.83%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+34026.09%)
Owasp SeraphimdroidOWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.
Stars: ✭ 62 (+169.57%)
RpotReal-time Packet Observation Tool
Stars: ✭ 38 (+65.22%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+200%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (+534.78%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+1217.39%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (+930.43%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+1139.13%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (+726.09%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (+200%)
MalwareDatabaseMalware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)
Stars: ✭ 21 (-8.7%)
yara-validatorValidates yara rules and tries to repair the broken ones.
Stars: ✭ 37 (+60.87%)
mazMalware Analysis Zoo
Stars: ✭ 25 (+8.7%)
factual-rules-generatorFactual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Stars: ✭ 62 (+169.57%)
d9scanNetwork Scanner with Backdoor Detection, other Nmap resources and syn-protection detection
Stars: ✭ 23 (+0%)
MultiAV2MultiAV scanner with Python and JSON REST API using Malice Docker AV Containers and Docker-Machine based Autoscaling
Stars: ✭ 30 (+30.43%)
YaraSharpC# wrapper around the Yara pattern matching library
Stars: ✭ 29 (+26.09%)
detectionDetection in the form of Yara, Snort and ClamAV signatures.
Stars: ✭ 70 (+204.35%)
Fake-Sandbox-ArtifactsThis script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools
Stars: ✭ 138 (+500%)
yaramanagerSimple yara rule manager
Stars: ✭ 60 (+160.87%)
python-icap-yaraAn ICAP Server with yara scanner for URL and content.
Stars: ✭ 50 (+117.39%)
moleYara powered NIDS with high speed packet capture powered by PF_RING
Stars: ✭ 51 (+121.74%)
FunnelFunnel is a lightweight yara-based feed scraper
Stars: ✭ 38 (+65.22%)
r2yarar2yara - Module for Yara using radare2 information
Stars: ✭ 30 (+30.43%)
Edge2GuardCode for PerCom Workshop paper title 'Edge2Guard: Botnet Attacks Detecting Offline Models for Resource-Constrained IoT Devices'
Stars: ✭ 16 (-30.43%)
YAFRAYAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
Stars: ✭ 22 (-4.35%)
memscrimperCode for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
Stars: ✭ 25 (+8.7%)
malware-prediction-rnnRNN implementation with Keras for machine activity data to predict malware
Stars: ✭ 35 (+52.17%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (+34.78%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (+47.83%)