MbaMalware Behavior Analyzer
Stars: ✭ 125 (+400%)
Drakvuf SandboxDRAKVUF Sandbox - automated hypervisor-level malware analysis system
Stars: ✭ 384 (+1436%)
PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Stars: ✭ 2,026 (+8004%)
MalconfscanVolatility plugin for extracts configuration data of known malware
Stars: ✭ 327 (+1208%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+1208%)
ColdfireGolang malware development framework
Stars: ✭ 309 (+1136%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+3080%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+2552%)
TeleratTelegram RAT written in Python
Stars: ✭ 56 (+124%)
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Stars: ✭ 1,253 (+4912%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (+24%)
Phishing.databasePhishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
Stars: ✭ 296 (+1084%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+1040%)
MalwaresourcecodeCollection of malware source code for a variety of platforms in an array of different programming languages.
Stars: ✭ 8,666 (+34564%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+1876%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (+1088%)
SimplifyAndroid virtual machine and deobfuscator
Stars: ✭ 3,865 (+15360%)
Bold-Falcon毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;方班网络安全综合实验-设计类;
Stars: ✭ 30 (+20%)
Artifacts KitPseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.
Stars: ✭ 99 (+296%)
NorimaciNorimaci is a simple and lightweight malware analysis sandbox for macOS
Stars: ✭ 37 (+48%)
rhinoAgile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors
Stars: ✭ 49 (+96%)
VX-APICollection of various malicious functionality to aid in malware development
Stars: ✭ 904 (+3516%)
unprotectUnprotect is a python tool for parsing PE malware and extract evasion techniques.
Stars: ✭ 75 (+200%)
TweetFeedCollecting IOCs posted on Twitter
Stars: ✭ 181 (+624%)
MalwareDatabaseMalware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)
Stars: ✭ 21 (-16%)
auroraMalware similarity platform with modularity in mind.
Stars: ✭ 70 (+180%)
yaraMalice Yara Plugin
Stars: ✭ 27 (+8%)
Vxug PapersResearch code & papers from members of vx-underground.
Stars: ✭ 291 (+1064%)
Ir RescueA Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Stars: ✭ 311 (+1144%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-32%)
Linux.miraiLeaked Linux.Mirai Source Code for Research/IoC Development Purposes
Stars: ✭ 466 (+1764%)
WdbgarkWinDBG Anti-RootKit Extension
Stars: ✭ 450 (+1700%)
Malware SamplesA collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
Stars: ✭ 565 (+2160%)
Dex OracleA pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Stars: ✭ 398 (+1492%)
ThezooA repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Stars: ✭ 7,849 (+31296%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+176%)
malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (+316%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+776%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (+544%)
fake-sandbox👁🗨 This script will simulate fake processes of analysis sandbox/VM software that some malware will try to avoid.
Stars: ✭ 110 (+340%)
Awesome HackingAwesome hacking is an awesome collection of hacking tools.
Stars: ✭ 1,802 (+7108%)
SeeSandboxed Execution Environment
Stars: ✭ 770 (+2980%)
ioc-fangerFang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .
Stars: ✭ 47 (+88%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (+276%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+1112%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (+1024%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-28%)
malware api classMalware dataset for security researchers, data scientists. Public malware dataset generated by Cuckoo Sandbox based on Windows OS API calls analysis for cyber security researchers
Stars: ✭ 134 (+436%)
Vol3xpVolatility Explorer Suit
Stars: ✭ 31 (+24%)
Malware scriptsVarious scripts for different malware families
Stars: ✭ 91 (+264%)
DFIR Resources REvil KaseyaResources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack
Stars: ✭ 172 (+588%)
sandboxSimple Windows Sandbox Configuration
Stars: ✭ 37 (+48%)