yaraMalice Yara Plugin
Stars: ✭ 27 (-92.33%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+296.02%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+183.81%)
MeltingPotA tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
Stars: ✭ 23 (-93.47%)
XapkdetectorAPK/DEX detector for Windows, Linux and MacOS.
Stars: ✭ 208 (-40.91%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+88.35%)
Nauz File DetectorLinker/Compiler/Tool detector for Windows, Linux and MacOS.
Stars: ✭ 146 (-58.52%)
DrsemuDrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior
Stars: ✭ 237 (-32.67%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (-37.78%)
WeDefend⛔🛡️ WeDefend - Monitor and Protect Windows from Remote Access Trojan
Stars: ✭ 23 (-93.47%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+40.34%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+125.85%)
malware-writeupsPersonal research and publication on malware families
Stars: ✭ 104 (-70.45%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (-7.1%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (-13.92%)
ApkfileAndroid app analysis and feature extraction library
Stars: ✭ 190 (-46.02%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (-19.03%)
assemblylineAssemblyLine 4 - File triage and malware analysis
Stars: ✭ 69 (-80.4%)
DrebinDrebin - NDSS 2014 Re-implementation
Stars: ✭ 52 (-85.23%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (-80.4%)
Detect It EasyProgram for determining types of files for Windows, Linux and MacOS.
Stars: ✭ 2,982 (+747.16%)
MalwaresearchA command line tool to find malwares on http://openmalware.org
Stars: ✭ 190 (-46.02%)
Pepper An open source script to perform malware static analysis on Portable Executable
Stars: ✭ 250 (-28.98%)
OwlyshieldOwlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..
Stars: ✭ 281 (-20.17%)
FlorentinoFast Static File Analysis Framework
Stars: ✭ 92 (-73.86%)
Malware-ZooHashes of infamous malware
Stars: ✭ 18 (-94.89%)
ProbedroidA SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.
Stars: ✭ 182 (-48.3%)
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 161 (-54.26%)
Icewater16,432 Free Yara rules created by
Stars: ✭ 324 (-7.95%)
bluepillBluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
Stars: ✭ 94 (-73.3%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (-69.03%)
KartonDistributed malware processing framework based on Python, Redis and MinIO.
Stars: ✭ 134 (-61.93%)
Anti-DebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
Stars: ✭ 297 (-15.62%)
Visualize logsA Python library and command line tools to provide interactive log visualization.
Stars: ✭ 128 (-63.64%)
Malware JailSandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
Stars: ✭ 349 (-0.85%)
WinappdbgWinAppDbg Debugger
Stars: ✭ 338 (-3.98%)
bonomenBONOMEN - Hunt for Malware Critical Process Impersonation
Stars: ✭ 42 (-88.07%)
csbdThe repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"
Stars: ✭ 20 (-94.32%)
decrypticonJava-layer Android Malware Simplifier
Stars: ✭ 17 (-95.17%)
python-icap-yaraAn ICAP Server with yara scanner for URL and content.
Stars: ✭ 50 (-85.8%)
TweetFeedCollecting IOCs posted on Twitter
Stars: ✭ 181 (-48.58%)
ThreatKBKnowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Stars: ✭ 68 (-80.68%)
mazMalware Analysis Zoo
Stars: ✭ 25 (-92.9%)
yara-rulesYara rules written by me, for free use.
Stars: ✭ 13 (-96.31%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (-80.11%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (-90.34%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (-91.19%)
MqueryYARA malware query accelerator (web frontend)
Stars: ✭ 264 (-25%)
Malware ResearchCode written as part of our various malware investigations
Stars: ✭ 281 (-20.17%)
DrltraceDrltrace is a library calls tracer for Windows and Linux applications.
Stars: ✭ 282 (-19.89%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (-14.77%)