365 Open source projects that are alternatives of or similar to Unpackers

A curated list of awesome resources related to executable packing

Fast setup wireguard server script, with dnscrypt and adblocking, maleware blocking, more blocking if you need. Use case eg. always on vpn and adblocking on ios or android, and be more secured in unknown networks.

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

The Mirai malware modified for use on NCL/a virtual/simulated environment.

Packer/Protector for x86-64 ELF binaries on Linux

Malware Sample Sources

A simple polymorphic engine

👽 Program for remote control of windows computers via telegram bot. Written in C#

SMTP server / sinkhole for collecting spam

A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.

Collection of various malicious functionality to aid in malware development

🎁 unbox - Unpack and Decompile the $h*! out of things

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

Source codes of malwares, stress tests etc. for computer.

ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solutions that clash with standard anti-debug methods.

Unprotect is a python tool for parsing PE malware and extract evasion techniques.

DGA Domain Detection using Bigram Frequency Analysis

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Console application for decompiling, recompiling, packaging, and patching tModLoader's .tmod files at blazing-fast speeds.

Automatic analysis of SWF files based on some heuristics. Extensible via plugins.

Malice Windows Defender AntiVirus Plugin

Kaggle "Microsoft Malware Classification Challenge". 6th place solution

Unpack 🛍 your JS source maps 🗺 to original files and folders.

Agile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors

Python telnet honeypot for catching botnet binaries

Virus Exchange (VX) - Collection of malware or assembly code used for "offensive" purposed.

This project is a SIEM with SIRP and Threat Intel, all in one.

Cross-platform PBO maker / unpacker

🙀 Icon Changer, File Pumper & Extension Spoofer - Quickly Modify Executable Files

Parse HOMM3 game files

BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)

Hashes of infamous malware

Batch Antivirus, a powerful antivirus suite written in batch with real-time protection and heuristical scanning.

Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.

Mikrotik's NPK files managing tools

Advanced Malware with multifeatures written in ASM/C/C++ , work on all windows versions ! (uncompleted)

A Binary Genetic Traits Lexer Framework

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

Who and what to follow in the world of cyber security

Malware dataset for security researchers, data scientists. Public malware dataset generated by Cuckoo Sandbox based on Windows OS API calls analysis for cyber security researchers

Malice Yara Plugin

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

Remote administration tool with Qt5

Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.

A collection of known Domain Generation Algorithms

Robust Automated Malware Unpacker

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

trolo - an easy to use script for generating Payloads that bypasses antivirus

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

ThePhish: an automated phishing email analysis tool

Run a Exe File (PE Module) in memory (like an Application Loader)

JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.

Created a VERY SIMPLE remote access Trojan that will establish administrative control over any windows machine it compromises.

A dependency-free, single-file FLOSS unrar library

contains utils for AGS: game extractor, repacker, disassembler and assembler

Demonstrate about file-less malware approach using JavaScript

Exam Prep for the Ec-council Certified Ethical Hacker 312-50

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).