Awesome Open Source

Programming Languages

Search results for malware analysis

malware-analysis x

532 search results found

X64dbg ⭐ 42,376

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Radare2 ⭐ 19,732

UNIX-like reverse engineering framework and command-line toolset

Mobile Security Framework Mobsf ⭐ 16,123

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Thezoo ⭐ 10,734

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Awesome Malware Analysis ⭐ 10,368

Defund the Police.

Scanners Box ⭐ 8,001

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

Pwndbg ⭐ 6,337

Exploit Development and Reverse Engineering with GDB Made Easy

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Detect It Easy ⭐ 6,155

Program for determining types of files for Windows, Linux and MacOS.

Pywhat ⭐ 6,136

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

Flare Vm ⭐ 6,056

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Retoolkit ⭐ 4,512

Reverse Engineer's Toolkit

Simplify ⭐ 4,259

Android virtual machine and deobfuscator

LIEF - Library to Instrument Executable Formats

The FLARE team's open-source tool to identify capabilities in executable files.

Gda Android Reversing Tool ⭐ 3,519

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.

Intelowl ⭐ 3,108

IntelOwl: manage your Threat Intelligence at scale

Awesome Yara ⭐ 3,095

A curated list of awesome YARA rules, tools, and people.

Flare Floss ⭐ 2,977

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Pe Sieve ⭐ 2,874

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Oletools ⭐ 2,665

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

Malwoverview ⭐ 2,492

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.

Hyperdbg ⭐ 2,457

State-of-the-art native debugging tool

Apklab ⭐ 2,343

Android Reverse-Engineering Workbench for VS Code

Pe Bear ⭐ 2,269

Portable Executable reversing tool with a friendly GUI

Pafish ⭐ 1,989

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Apkid ⭐ 1,904

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Blueteam Tools ⭐ 1,871

Tools and Techniques for Blue Team / Incident Response

Hollows_hunter ⭐ 1,743

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

Flare Fakenet Ng ⭐ 1,688

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

Hidden ⭐ 1,623

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc

Malware_training_vol1 ⭐ 1,551

Materials for Windows Malware Analysis training (volume 1)

Capev2 ⭐ 1,519

Malware Configuration And Payload Extraction

Malice ⭐ 1,429

VirusTotal Wanna Be - Now with 100% more Hipster

Yargen ⭐ 1,387

yarGen is a generator for YARA rules

Speakeasy ⭐ 1,320

Windows kernel and user mode emulation.

Quark Engine ⭐ 1,173

Dig Vulnerabilities in the BlackBox

Awesome Executable Packing ⭐ 1,100

A curated list of awesome resources related to executable packing

Tiny_tracer ⭐ 1,089

A Pin Tool for tracing API calls etc

Qu1cksc0pe ⭐ 1,021

All-in-One malware analysis tool.

Malboxes ⭐ 1,016

Builds malware analysis Windows VMs so that you don't have to.

Malware Samples ⭐ 985

A collection of malware samples caught by several honeypots i manage

Drakvuf ⭐ 968

DRAKVUF Black-box Binary Analysis

Malcom - Malware Communications Analyzer

Drakvuf Sandbox ⭐ 949

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Malware Exhibit ⭐ 857

🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have Compiled & analysed by researchers🔥 to understand more about Malware threats😈, analysis and mitigation🧐.

FAME Automates Malware Evaluation

Sandboxed Execution Environment

Sandboxed Execution Environment

Vipermonkey ⭐ 777

A VBA parser and emulation engine to analyze malicious macros.

Malware Samples ⭐ 766

A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

Flare Emu ⭐ 758

Antidbg ⭐ 712

A bunch of Windows anti-debugging tricks for x86 and x64.

Hackgpt ⭐ 665

I leverage OpenAI and ChatGPT to do hackerish things

Practicalmalwareanalysis Labs ⭐ 664

Binaries for the book Practical Malware Analysis

Unlicense ⭐ 657

Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.

Malware Analysis And Reverse Engineering ⭐ 651

Some of my publicly available Malware analysis and Reverse engineering.

Stringsifter ⭐ 644

A machine learning tool that ranks strings based on their relevance for malware analysis.

Saferwall ⭐ 632

☁️ Collaborative Malware Analysis Platform at Scale

Imonitor ⭐ 629

iMonitor（冰镜 - 终端行为分析系统）

Dumpulator ⭐ 627

An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

Multiscanner ⭐ 609

Modular file scanning/analysis framework

makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Mal_unpack ⭐ 572

Dynamic unpacker based on PE-sieve

Habomalhunter ⭐ 567

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

Xapkdetector ⭐ 556

APK/DEX detector for Windows, Linux and MacOS.

Portable Executable (PE) library written in .Net

Xlmmacrodeobfuscator ⭐ 544

Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)

A tool for studying JavaScript malware.

Refinery ⭐ 519

High Octane Triage Analysis

Honeypots ⭐ 516

30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)

Malware Sample Library ⭐ 513

Malware sample library.

Antivmdetection ⭐ 513

Script to create templates to use with VirtualBox to make vm detection harder

Defcon 31 Syscalls Workshop ⭐ 511

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

Alphagolang ⭐ 490

IDApython Scripts for Analyzing Golang Binaries

Cuckoo Droid ⭐ 477

CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.

Nauz File Detector ⭐ 477

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

Dex Oracle ⭐ 473

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

Awesome Rat ⭐ 438

RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.

Winappdbg ⭐ 435

WinAppDbg Debugger

Malware Jail ⭐ 429

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

Wdbgark ⭐ 412

WinDBG Anti-RootKit Extension

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Deeptraffic ⭐ 399

Deep Learning models for network traffic classification

Droidefense: Advance Android Malware Analysis Framework

🐺 Malware analysis platform

SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]

Icewater ⭐ 378

16,432 Free Yara rules created by

A Binary Genetic Traits Lexer Framework

An open source framework for enterprise level automated analysis.

Awesome Android Reverse Engineering ⭐ 376

A curated list of awesome Android Reverse Engineering training, resources, and tools.

Kernel Dll Injector ⭐ 374

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

Awesome Csirt ⭐ 368

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

A comprehensive binary emulation and instrumentation platform.

A Python RESTful API framework for online malware analysis and threat intelligence services.

Distributed malware processing framework based on Python, Redis and S3.

Iatelligence ⭐ 327

IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related

Simpleator ⭐ 324

Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".

Related Searches

Python Malware Analysis (256)

1-100 of 532 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.