Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for malware analysis
malware-analysis
x
532 search results found
X64dbg
⭐
42,376
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
Radare2
⭐
19,732
UNIX-like reverse engineering framework and command-line toolset
Mobile Security Framework Mobsf
⭐
16,123
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Thezoo
⭐
10,734
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
Awesome Malware Analysis
⭐
10,368
Defund the Police.
Scanners Box
⭐
8,001
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
Pwndbg
⭐
6,337
Exploit Development and Reverse Engineering with GDB Made Easy
Gef
⭐
6,203
GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux
Detect It Easy
⭐
6,155
Program for determining types of files for Windows, Linux and MacOS.
Pywhat
⭐
6,136
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
Flare Vm
⭐
6,056
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.
Misp
⭐
5,049
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
Retoolkit
⭐
4,512
Reverse Engineer's Toolkit
Simplify
⭐
4,259
Android virtual machine and deobfuscator
Lief
⭐
4,237
LIEF - Library to Instrument Executable Formats
Capa
⭐
3,944
The FLARE team's open-source tool to identify capabilities in executable files.
Gda Android Reversing Tool
⭐
3,519
the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
Intelowl
⭐
3,108
IntelOwl: manage your Threat Intelligence at scale
Awesome Yara
⭐
3,095
A curated list of awesome YARA rules, tools, and people.
Flare Floss
⭐
2,977
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
Pe Sieve
⭐
2,874
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Oletools
⭐
2,665
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
Malwoverview
⭐
2,492
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
Hyperdbg
⭐
2,457
State-of-the-art native debugging tool
Apklab
⭐
2,343
Android Reverse-Engineering Workbench for VS Code
Pe Bear
⭐
2,269
Portable Executable reversing tool with a friendly GUI
Pafish
⭐
1,989
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Apkid
⭐
1,904
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Blueteam Tools
⭐
1,871
Tools and Techniques for Blue Team / Incident Response
Hollows_hunter
⭐
1,743
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Flare Fakenet Ng
⭐
1,688
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
Hidden
⭐
1,623
🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc
Malware_training_vol1
⭐
1,551
Materials for Windows Malware Analysis training (volume 1)
Capev2
⭐
1,519
Malware Configuration And Payload Extraction
Malice
⭐
1,429
VirusTotal Wanna Be - Now with 100% more Hipster
Yargen
⭐
1,387
yarGen is a generator for YARA rules
Speakeasy
⭐
1,320
Windows kernel and user mode emulation.
Quark Engine
⭐
1,173
Dig Vulnerabilities in the BlackBox
Awesome Executable Packing
⭐
1,100
A curated list of awesome resources related to executable packing
Tiny_tracer
⭐
1,089
A Pin Tool for tracing API calls etc
Qu1cksc0pe
⭐
1,021
All-in-One malware analysis tool.
Malboxes
⭐
1,016
Builds malware analysis Windows VMs so that you don't have to.
Malware Samples
⭐
985
A collection of malware samples caught by several honeypots i manage
Drakvuf
⭐
968
DRAKVUF Black-box Binary Analysis
Malcom
⭐
957
Malcom - Malware Communications Analyzer
Drakvuf Sandbox
⭐
949
DRAKVUF Sandbox - automated hypervisor-level malware analysis system
Malware Exhibit
⭐
857
🚀🚀 This is a 🎇🔥 REAL WORLD🔥 🎇 Malware Collection I have Compiled & analysed by researchers🔥 to understand more about Malware threats😈, analysis and mitigation🧐.
Fame
⭐
820
FAME Automates Malware Evaluation
See
⭐
807
Sandboxed Execution Environment
See
⭐
792
Sandboxed Execution Environment
Vipermonkey
⭐
777
A VBA parser and emulation engine to analyze malicious macros.
Malware Samples
⭐
766
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
Flare Emu
⭐
758
Antidbg
⭐
712
A bunch of Windows anti-debugging tricks for x86 and x64.
Hackgpt
⭐
665
I leverage OpenAI and ChatGPT to do hackerish things
Practicalmalwareanalysis Labs
⭐
664
Binaries for the book Practical Malware Analysis
Unlicense
⭐
657
Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.
Malware Analysis And Reverse Engineering
⭐
651
Some of my publicly available Malware analysis and Reverse engineering.
Stringsifter
⭐
644
A machine learning tool that ranks strings based on their relevance for malware analysis.
Saferwall
⭐
632
☁️ Collaborative Malware Analysis Platform at Scale
Imonitor
⭐
629
iMonitor(冰镜 - 终端行为分析系统)
Dumpulator
⭐
627
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
Multiscanner
⭐
609
Modular file scanning/analysis framework
Makin
⭐
602
makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Packj
⭐
573
Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain
Mal_unpack
⭐
572
Dynamic unpacker based on PE-sieve
Habomalhunter
⭐
567
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
Xapkdetector
⭐
556
APK/DEX detector for Windows, Linux and MacOS.
Penet
⭐
550
Portable Executable (PE) library written in .Net
Xlmmacrodeobfuscator
⭐
544
Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
Box Js
⭐
540
A tool for studying JavaScript malware.
Refinery
⭐
519
High Octane Triage Analysis
Honeypots
⭐
516
30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)
Malware Sample Library
⭐
513
Malware sample library.
Antivmdetection
⭐
513
Script to create templates to use with VirtualBox to make vm detection harder
Defcon 31 Syscalls Workshop
⭐
511
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
Alphagolang
⭐
490
IDApython Scripts for Analyzing Golang Binaries
Cuckoo Droid
⭐
477
CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.
Nauz File Detector
⭐
477
Linker/Compiler/Tool detector for Windows, Linux and MacOS.
Dex Oracle
⭐
473
A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis
Awesome Rat
⭐
438
RAT And C&C Resources. 250+ Open Source Projects, 1200+ RAT/C&C blog/video.
Winappdbg
⭐
435
WinAppDbg Debugger
Malware Jail
⭐
429
Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
Wdbgark
⭐
412
WinDBG Anti-RootKit Extension
Fcl
⭐
411
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Deeptraffic
⭐
399
Deep Learning models for network traffic classification
Engine
⭐
398
Droidefense: Advance Android Malware Analysis Framework
Freki
⭐
395
🐺 Malware analysis platform
Ssma
⭐
380
SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]
Icewater
⭐
378
16,432 Free Yara rules created by
Binlex
⭐
377
A Binary Genetic Traits Lexer Framework
Stoq
⭐
376
An open source framework for enterprise level automated analysis.
Awesome Android Reverse Engineering
⭐
376
A curated list of awesome Android Reverse Engineering training, resources, and tools.
Kernel Dll Injector
⭐
374
Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module
Awesome Csirt
⭐
368
Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Zelos
⭐
367
A comprehensive binary emulation and instrumentation platform.
Malsub
⭐
355
A Python RESTful API framework for online malware analysis and threat intelligence services.
Karton
⭐
353
Distributed malware processing framework based on Python, Redis and S3.
Iatelligence
⭐
327
IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
Simpleator
⭐
324
Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
Related Searches
Python Malware Analysis (256)
1-100 of 532 search results
Next >
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.