Topic: malware-analysis

rshipp / awesome-malware-analysis

A curated list of awesome malware analysis tools and resources.

malware-analysis awesome awesome-list list malware-samples analysis-framework dynamic-analysis static-analysis threat-intelligence automated-analysis domain-analysis network-traffic threatintel malware-collection malware-research threat-sharing chinese-translation chinese

Updated Sep 1, 2018

ytisf / theZoo

3.6k

A repository of LIVE malwares for your own joy and pleasure

malware malware-analysis malware-samples

Python Updated Aug 1, 2018

MobSF / Mobile-Security-Framework-MobSF

3.1k

Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework …

static-analysis dynamic-analysis python mobsf android-security mobile-security windows-mobile-security ios-security mobile-security-framework api-testing web-security malware-analysis runtime-security ci-cd devsecops apk ipa

Python Updated Sep 18, 2018 1 issue needs help

CalebFenton / simplify

2.6k

Generic Android Deobfuscator

deobfuscation java optimization android reverse-engineering malware-analysis dalvik malware deobfuscator virtual-machine emulator malware-analyzer

Java Updated Jul 2, 2018

MISP / MISP

1.6k

MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)

PHP Updated Sep 18, 2018

pwndbg / pwndbg

1.5k

Exploit Development and Reverse Engineering with GDB Made Easy

python gdb peda gdbinit pwndbg reverse-engineering debugging ctf gef hack linux disassembler ida-pro binary-ninja defcon capture-the-flag malware malware-analysis pwnable

Python Updated Sep 18, 2018 36 issues need help

lief-project / LIEF

973

LIEF - Library to Instrument Executable Formats

reverse-engineering malware-analysis binary-analysis parser modification executable-formats elf macho pe lief parsing sdk python android dex oat art vdex

C++ Updated Sep 13, 2018 1 issue needs help

tomchop / malcom

754

Malcom - Malware Communications Analyzer

malware network-traffic pcap threat-intelligence malware-analysis infosec dfir

Python Updated Nov 29, 2017

F-Secure / see

677

Sandboxed Execution Environment

python sandbox malware-analysis malware-research virtualization

Python Updated Mar 9, 2018

decalage2 / oletools

652

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office docu…

python python-library olefile malware-analysis ms-office-documents compound rtf forensics ole-files security parser pyparsing vba macros

Python Updated Sep 15, 2018 1 issue needs help

GoSecure / malboxes

603

Builds malware analysis Windows VMs so that you don't have to.

malware-analysis malware-research virtual-machine python3 vagrant packer

Python Updated Aug 1, 2018 3 issues need help

maliceio / malice

498

VirusTotal Wanna Be - Now with 100% more Hipster

malice docker malware infosec virustotal elasticsearch golang antivirus cloud cybersecurity dfir malware-analysis malware-research

Go Updated Sep 9, 2018

certsocietegenerale / fame

468

FAME Automates Malware Evaluation

malware malware-analysis malware-research framework infosec incident-response

Python Updated May 17, 2018 1 issue needs help

Neo23x0 / yarGen

424

yarGen is a generator for YARA rules

python yara malware malware-research malware-analysis malwareanalysis

Python Updated Sep 8, 2018

rednaga / APKiD

423

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

android antivirus machine-learning malware-detection malware-analysis malware-research yara yara-forensics

Python Updated Sep 5, 2018

secrary / makin

363

makin - reveal anti-debugging and anti-VM tricks

reverse-engineering debugging hooks capstone malware-analysis

C++ Updated Jun 28, 2018

0x27 / linux.mirai

361

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes

mirai ioc linux mirai-source iot malware ioc-development malware-development malware-research malware-analysis leak botnet

C Updated Feb 17, 2017

fabrimagic72 / malware-samples

352

A collection of malware samples caught by several honeypots i manage

malware honeypot botnet malware-analysis malware-samples malwareanalysis wannacry uiwix ransomware eternalblue eternalrocks

Updated Jan 4, 2018

secrary / SSMA

349

SSMA - Simple Static Malware Analyzer

malware malware-analyzer python malware-analysis

Python Updated Apr 1, 2018

decalage2 / ViperMonkey

345

A VBA parser and emulation engine to analyze malicious macros.

vba emulation malware-analysis python security macros parser pyparsing

Python Updated Aug 17, 2018 1 issue needs help

tklengyel / drakvuf

332

DRAKVUF Black-box Binary Analysis

malware-analysis virtualization xen introspection

C Updated Sep 17, 2018 5 issues need help

Tencent / HaboMalHunter

331

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated…

malware-analysis dynamic-analysis security linux static-analysis elf

Python Updated Aug 9, 2018

InQuest / awesome-yara

320

A curated list of awesome YARA rules, tools, and people.

yara-rules yara-signatures yara malware-rules malware-analysis malware-research malware-detection yara-scanner yara-manager threat-hunting awesome awesome-yara awesome-list ioc

Updated Sep 12, 2018

mitre / multiscanner

317

Modular file scanning/analysis framework

python analytic-machines analysis-framework python-script linux scanning antivirus metadata yara malware malware-analysis malware-analyzer malware-research cuckoo

JavaScript Updated Sep 7, 2018

feicong / sec_skills

286

软件安全工程师技能表

reverse-engineering android-security ios-security macos-security binary-analysis malware-analysis

Updated Jul 18, 2017

swwwolf / wdbgark

286

WinDBG Anti-RootKit Extension

C++ Updated Feb 13, 2018

droidefense / engine

284

Droidefense: Advance Android Malware Analysis Framework

android security reverse engineer malware malware-analysis dalvik opcodes trojan ransomware droidefense engine static-analysis static-code-analysis dynamic-analysis dynamic-code-analysis

Java Updated Aug 10, 2018 1 issue needs help

CalebFenton / dex-oracle

262

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

reverse-engineering android malware malware-analysis malware-analyzer deobfuscation deobfuscator dex dalvik

Ruby Updated Jul 17, 2018

SupportIntelligence / Icewater

255

12,805 Free Yara rules created by

yara malware-analysis cluster threat dna

Updated Dec 12, 2017

HynekPetrak / malware-jail

255

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

malware-samples wscript deobfuscation angler javascript malware-jail payload-extraction analysis payload malware-analysis malware-research malware-analyzer

JavaScript Updated Apr 16, 2018 2 issues need help

malware-analysis

Repositories 278