Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
-
Updated
Nov 9, 2021 - C
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
Research code & papers from members of vx-underground.
An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).
The PE file analysis toolkit
Leaked Linux.Mirai Source Code for Research/IoC Development Purposes
Jaws is an invisible programming language! Inject invisible code into other languages and files! Created for security research -- see blog post
Cybersecurity research results. Simple C/C++ and Python implementations
PoC designed to evade userland-hooking anti-virus.
Fileless persistence, attacks and anti-forensic capabilties.
Protects deletion of files with a specified extension using a kernel-mode driver.
A multi-staged malware that contains a kernel mode rootkit and a remote system shell.
-x-x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x-x- An ELF virus capable of generating segment padded trojans.
-x-x-x- DO NOT RUN ON PRODUCTION MACHINE -x-x-x- LD_PRELOAD based user-land rootkit for Linux platform.
A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
64-bit LKM Rootkit builder based on yaml prescription. Working on 5.15.5 kernel
Malware campaigns and APTs research by BlackArrow
A Linux/Windows Ransomware PoC written in Python, Go and C
Thanatos.
Hellokitty Ransomware Sourcecode leaked
Add a description, image, and links to the malware-research topic page so that developers can more easily learn about it.
To associate your repository with the malware-research topic, visit your repo's landing page and select "manage topics."