Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+935.42%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (-67.36%)
Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (-36.46%)
mobileAuditDjango application that performs SAST and Malware Analysis for Android APKs
Stars: ✭ 140 (-51.39%)
AntidbgA bunch of Windows anti-debugging tricks for x86 and x64.
Stars: ✭ 177 (-38.54%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (-44.1%)
jitmJITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.
Stars: ✭ 27 (-90.62%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: ✭ 148 (-48.61%)
linux-peCOFF and Portable Executable format described using standard C++ with no dependencies.
Stars: ✭ 163 (-43.4%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+634.03%)
bazaarAndroid security & privacy analysis for the masses
Stars: ✭ 191 (-33.68%)
BinsnitchDetect silent (unwanted) changes to files on your system
Stars: ✭ 144 (-50%)
telfhashSymbol hash for ELF files
Stars: ✭ 75 (-73.96%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: ✭ 134 (-53.47%)
PepperPE (x86) and PE+ (x64) files viewer, based on libpe.
Stars: ✭ 65 (-77.43%)
MazewalkerToolkit for enriching and speeding up static malware analysis
Stars: ✭ 132 (-54.17%)
emeraldImport DynamoRIO drcov code coverage data into Ghidra
Stars: ✭ 30 (-89.58%)
mem64Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.
Stars: ✭ 26 (-90.97%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (-76.04%)
SojoboA binary analysis framework
Stars: ✭ 116 (-59.72%)
CapaThe FLARE team's open-source tool to identify capabilities in executable files.
Stars: ✭ 1,981 (+587.85%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (-85.42%)
Pe SieveScans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Stars: ✭ 1,783 (+519.1%)
pe-loaderA Windows PE format file loader
Stars: ✭ 81 (-71.87%)
Information Security TasksThis repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Stars: ✭ 108 (-62.5%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-92.01%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+384.03%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (-2.08%)
MacholibreMach-O & Universal Binary Parser
Stars: ✭ 102 (-64.58%)
aparoidStatic and dynamic Android application security analysis
Stars: ✭ 62 (-78.47%)
FileintelA modular Python application to pull intelligence about malicious files
Stars: ✭ 97 (-66.32%)
pftriagePython tool and library to help analyze files during malware triage and analysis.
Stars: ✭ 77 (-73.26%)
FlorentinoFast Static File Analysis Framework
Stars: ✭ 92 (-68.06%)
ssdcssdeep cluster analysis for malware files
Stars: ✭ 24 (-91.67%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (-34.03%)
Mobile Security Framework MobsfMobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Stars: ✭ 10,212 (+3445.83%)
angr-antievasionFinal project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).
Stars: ✭ 35 (-87.85%)
MatireMalware Analysis, Threat Intelligence and Reverse Engineering: LABS
Stars: ✭ 55 (-80.9%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (-2.43%)
VirustotalA simple command-line script to interact with the virustotal-api
Stars: ✭ 50 (-82.64%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (-89.24%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-84.03%)
FactionsPEMost advanced factions plugin for PocketMine-MP
Stars: ✭ 46 (-84.03%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (-85.76%)
rtfraptorExtract OLEv1 objects from RTF files by instrumenting Word
Stars: ✭ 50 (-82.64%)
The Backdoor FactoryPatch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Stars: ✭ 2,904 (+908.33%)
MedusaBinary instrumentation framework based on FRIDA
Stars: ✭ 258 (-10.42%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (-1.04%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+13.54%)
MiniNT5-Toolssmall Windows 10 (based on Windows PE) with customised tools
Stars: ✭ 34 (-88.19%)
csbdThe repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"
Stars: ✭ 20 (-93.06%)
SuperLibraryInformation Security Library
Stars: ✭ 60 (-79.17%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (-34.03%)