817 Open source projects that are alternatives of or similar to Nauz File Detector

yarGen is a generator for YARA rules

Code written as part of our various malware investigations

Binary instrumentation framework based on FRIDA

《macOS软件安全与逆向分析》随书源码

Exploit Development and Reverse Engineering with GDB Made Easy

Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

idenLib - Library Function Identification [This project is not maintained anymore]

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

Ghidra Analysis Enhancer 🐉

🐺 Malware analysis platform

软件安全工程师技能表

WinDBG Anti-RootKit Extension

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)

Distributed malware processing framework based on Python, Redis and MinIO.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

A modular Python application to pull intelligence about malicious files

A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

A machine learning tool that ranks strings based on their relevance for malware analysis.

Modular file scanning/analysis framework

The FLARE team's open-source tool to identify capabilities in executable files.

Write-ups for FireEye's FLARE-On challenges

The repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"

Community modules for FAME

Malware Machine Learning

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

A community driven collection of IDA FLIRT signature files

Builds malware analysis Windows VMs so that you don't have to.

Livro: Fundamentos de Engenharia Reversa

ReversingLabs YARA Rules

Submits multiple domains to VirusTotal API

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

WinAppDbg Debugger

《macOS软件安全与逆向分析》勘误

Maltego CaseFile entities for information security investigations, malware analysis and incident response

CLI tool to analyze PE files

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

OWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.

A repository of my completed writeups, along with the samples themselves.

Collection of malware source code for a variety of platforms in an array of different programming languages.

A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.

makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]

Malware Analysis, Threat Intelligence and Reverse Engineering: LABS

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

VirusTotal Wanna Be - Now with 100% more Hipster

逆向火绒安全软件驱动——sysdiag

elf-strings will programmatically read an ELF binary's string sections within a given binary. This is meant to be much like the strings UNIX utility, however is purpose built for ELF binaries.

Xiaomi Flower Care (MiFlora) API wrapper.

IDAPython plugin for finding function strings recursively

A React component that decorates its children with mouse and touch coordinates relative to itself.

Re-implementation of Abe's Exoddus and Abe's Oddysee

Keystone assembler framework: Core (Arm, Arm64, Hexagon, Mips, PowerPC, Sparc, SystemZ & X86) + bindings

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

A dnSpy extension to aid reversing of obfuscated assemblies

Software copy protection against cracking & reverse engineering with anti-cracking & anti-debugging techniques. Software license key system with time trial options.

Unpacking scripts for Ollydbg.

"Just Another ReVersIng Suite" or whatever other bullshit you can think of

A Minimalist Instruction Extender for the ARM architecture and IDA Pro