346 Open source projects that are alternatives of or similar to vx

Domains Blocklist for Squid-Cache

Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provided are code samples, signature recommendations and countermeasures within each category for the described techniques.

Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).

Windows Remote Administration Tool via Telegram. Written in Python

Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

Repository containting original and decompiled files of TRISIS/TRITON/HATMAN malware

Malware dataset for security researchers, data scientists. Public malware dataset generated by Cuckoo Sandbox based on Windows OS API calls analysis for cyber security researchers

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Cross Platform ELF analysis

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

Wolves Among the Sheep

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

My implementation of enSilo's Process Doppelganging (PE injection technique)

Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

Run a Exe File (PE Module) in memory (like an Application Loader)

A merged collection of hosts from reputable sources. #StayEnergized!

Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.

Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

Malware samples, analysis exercises and other interesting resources.

Free Malware Training Datasets for Machine Learning

Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

ipsets dynamically updated with firehol's update-ipsets.sh script

Simple obfuscation tool

C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends

Python network worm that spreads on the local network and gives the attacker control of these machines.

Malice Windows Defender AntiVirus Plugin

RCEed version of computer malware / rootkit MyRTUs / Stuxnet.

A simple polymorphic engine

Allows you to quickly query a Windows machine for RAM artifacts

Collection of various malicious functionality to aid in malware development

Qiling Advanced Binary Emulation Framework

Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .

Quickly and easily install, uninstall, and set up automatic updates for any of Steven Black's unified hosts files.

Agile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors

Pythonic ransomware proof of concept.

Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact))..

Sandbox for automated Linux malware analysis.

Python telnet honeypot for catching botnet binaries

Anteater - CI/CD Gate Check Framework

Source codes of malwares, stress tests etc. for computer.

Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.

An open source script to perform malware static analysis on Portable Executable

DDoor - cross platform backdoor using dns txt records

The Mirai malware modified for use on NCL/a virtual/simulated environment.

Rootkits | Backdoors | Sniffers | Virus | Ransomware | Steganography | Cryptography | Shellcodes | Webshells | Keylogger | Botnets | Worms | Other Network Tools

A simple auditing utility for macOS

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Unprotect is a python tool for parsing PE malware and extract evasion techniques.

Detect silent (unwanted) changes to files on your system

KicomAV is an open source (GPL v2) antivirus engine designed for detecting malware and disinfecting it.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Assembly block for finding and calling the windows API functions inside import address table(IAT) of the running PE file.

Personal compilation of APT malware from whitepaper releases, documents and own research

Packer/Protector for x86-64 ELF binaries on Linux

Hashes of infamous malware

Advanced Malware with multifeatures written in ASM/C/C++ , work on all windows versions ! (uncompleted)

A LKM rootkit targeting 4.x and 5.x kernel versions which opens a backdoor that can spawn a reverse shell to a remote host, launch malware and more.

🐐 GoAT (Golang Advanced Trojan) is a trojan that uses Twitter as a C&C server