Awesome Open Source

Programming Languages

Search results for python malware analysis

malware-analysis x

196 search results found

Pwndbg ⭐ 6,337

Exploit Development and Reverse Engineering with GDB Made Easy

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Pywhat ⭐ 6,136

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

LIEF - Library to Instrument Executable Formats

Intelowl ⭐ 3,108

IntelOwl: manage your Threat Intelligence at scale

Oletools ⭐ 2,665

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

Malwoverview ⭐ 2,492

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.

Capev2 ⭐ 1,519

Malware Configuration And Payload Extraction

Yargen ⭐ 1,387

yarGen is a generator for YARA rules

Quark Engine ⭐ 1,173

Dig Vulnerabilities in the BlackBox

Qu1cksc0pe ⭐ 1,021

All-in-One malware analysis tool.

Malboxes ⭐ 1,016

Builds malware analysis Windows VMs so that you don't have to.

Malcom - Malware Communications Analyzer

Drakvuf Sandbox ⭐ 949

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

FAME Automates Malware Evaluation

Sandboxed Execution Environment

Sandboxed Execution Environment

Vipermonkey ⭐ 777

A VBA parser and emulation engine to analyze malicious macros.

Hackgpt ⭐ 665

I leverage OpenAI and ChatGPT to do hackerish things

Unlicense ⭐ 657

Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.

Malware Analysis And Reverse Engineering ⭐ 651

Some of my publicly available Malware analysis and Reverse engineering.

Dumpulator ⭐ 627

An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

Multiscanner ⭐ 609

Modular file scanning/analysis framework

Packj stops ⚡ Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

Habomalhunter ⭐ 567

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

Refinery ⭐ 519

High Octane Triage Analysis

Honeypots ⭐ 516

30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, sip, smb, smtp, snmp, socks5, ssh, telnet, vnc)

Antivmdetection ⭐ 513

Script to create templates to use with VirtualBox to make vm detection harder

Alphagolang ⭐ 490

IDApython Scripts for Analyzing Golang Binaries

Cuckoo Droid ⭐ 477

CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.

Winappdbg ⭐ 435

WinAppDbg Debugger

Deeptraffic ⭐ 399

Deep Learning models for network traffic classification

🐺 Malware analysis platform

SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]

An open source framework for enterprise level automated analysis.

A comprehensive binary emulation and instrumentation platform.

A Python RESTful API framework for online malware analysis and threat intelligence services.

Distributed malware processing framework based on Python, Redis and S3.

Iatelligence ⭐ 327

IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related

Malware Research ⭐ 318

Code written as part of our various malware investigations

An open source script to perform malware static analysis on Portable Executable

Polichombr ⭐ 287

Collaborative malware analysis framework

Mwdb Core ⭐ 286

Malware repository component for samples & static configuration with REST API interface.

Dc3 Mwcp ⭐ 278

DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.

Gonnacry ⭐ 267

A Linux Ransomware

Don't Just Search OSINT. Sweep It.

Sandbox for automated Linux malware analysis.

Simple No-meaning Assembly Omitter for IDA Pro (This is just a prototype)

Analyzer ⭐ 222

Analyze, extract and visualize features, artifacts and IoCs of files and memory dumps (Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more)

Sysnr Funcfinder ⭐ 216

A plugin for IDA that renames functions by system call numbers.

Apiscout ⭐ 196

This project aims at simplifying Windows API import recovery on arbitrary memory dumps

Pdfalyzer ⭐ 171

Analyze PDFs. With colors. And Yara.

Assemblyline ⭐ 157

AssemblyLine 4: File triage and malware analysis

A malware analysis and classification tool.

Malwaretrainingsets ⭐ 145

Free Malware Training Datasets for Machine Learning

Ioc Finder ⭐ 144

Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security related information) from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. Explore our interactive documentation here: https://hightower.space/ioc-finder/

Cirtkit ⭐ 140

Tools for the Computer Incident Response Team 💻

Rew Sploit ⭐ 132

Emulate and Dissect MSF and *other* attacks

Attack_monitor ⭐ 128

Endpoint detection & Malware analysis software

Practicalmalwarelabs ⭐ 128

Keep track of the labs from the book "Practical Malware Analysis"

Sandboxapi ⭐ 125

Minimal, consistent Python API for building integrations with malware sandboxes.

Pyhidra ⭐ 121

Pyhidra is a Python library that provides direct access to the Ghidra API within a native CPython interpreter using jpype.

Replica ⭐ 121

Ghidra Analysis Enhancer 🐉

Analyst Arsenal ⭐ 114

A toolkit for Security Researchers

Hexrays decompiler plugin that colorizes and filters the decompiler's output based on regular expressions

Obfu De Scate ⭐ 105

Obfu[DE]scate is a de-obfuscation tool for Android APKs that uses fuzzy comparison logic to identify similarities between functions, even if they have been renamed as part of obfuscation. It compares two versions of an APK and generates a mapping text file and an interactive HTML file as outputs!

Malware_analysis ⭐ 99

This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.

Python implementation of the Packed Executable iDentifier (PEiD)

Dllrunner ⭐ 97

Smart DLL execution for malware analysis in sandbox systems

Yaralyzer ⭐ 95

Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.

Fileintel ⭐ 94

A modular Python application to pull intelligence about malicious files

Jupyter Collection ⭐ 94

Collection of Jupyter Notebooks by @fr0gger_

Cuckoodroid 2.0 ⭐ 87

CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.

Macholibre ⭐ 85

Mach-O & Universal Binary Parser

Pyonenote ⭐ 84

A python library to parse OneNote (.one) files

Awesome collection of resources 😎 Work in progress🔥

Autodroid ⭐ 79

A tool for automating interactions with Android devices - including ADB, AndroGuard, and Frida interactivity.

Mass static malware analysis tool

Pftriage ⭐ 73

Python tool and library to help analyze files during malware triage and analysis.

Ghidra_scripts ⭐ 72

Ghidra scripts for malware analysis

Stoq Plugins Public ⭐ 68

stoQ Public Plugins

Salvaging Static Analysis

Small visualizator for PE files

Eml_analyzer ⭐ 60

A cli script to analyze an E-Mail in the EML format for viewing the header, extracting attachments, etc.

A Malware classifier dataset built with header fields’ values of Portable Executable files

Telfhash ⭐ 59

Symbol hash for ELF files

Malware Analysis Scripts ⭐ 56

Collection of scripts for different malware analysis tasks

Droiddetective ⭐ 56

A machine learning malware analysis framework for Android apps.

Assemblyline Base ⭐ 56

Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)

Static and dynamic Android application security analysis

Virustotal Python ⭐ 52

A Python library to interact with the public VirusTotal v3 and v2 APIs.

Ida_plugin_antidebugseeker ⭐ 52

Automatically identify and extract potential anti-debugging techniques used by malware.

Virustotal ⭐ 50

A simple command-line script to interact with the virustotal-api

Python Icap Yara ⭐ 49

An ICAP Server with yara scanner for URL and content.

Falco_extended_rules ⭐ 49

Curating Falco rules with MITRE ATT&CK Matrix

Koodousfinder ⭐ 48

A simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities

Malgazer ⭐ 43

A Python malware analysis library.

Malwarehunter ⭐ 43

Static and automated/dynamic malware analysis

Rtfraptor ⭐ 42

Extract OLEv1 objects from RTF files by instrumenting Word

Awesome Docker Malware Analysis ⭐ 42

Repository of tools and resources for analyzing Docker containers

Related Searches

Python Script (17,004)

Python Command Line (13,351)

Python Deep Learning (13,092)

Python Jupyter Notebook (12,976)

Python Network (11,495)

Python C Plus Plus (6,054)

Python Classification (5,958)

Python Pipeline (4,391)

Python Scanner (3,789)

Python Security (3,406)

1-100 of 196 search results

Privacy | About | Terms | Follow Us On Twitter

Copyright 2018-2024 Awesome Open Source. All rights reserved.