This repository contains malware samples that I reverse engineered.
-
Updated
Jul 10, 2024 - Go
This repository contains malware samples that I reverse engineered.
Static configuration extractor for DanaBot (main component)
Go library for malware development
Static binary analysis tool to compute shared strings references between binaries and output in JSON, YAML and YARA
The tool is designed to identify the compiling language based on specific patterns
Command&Control emulator for BlackMatter ransomware (ESXi/Linux)
Configuration Extractor for the Windows variant of BlackMatter Ransomware
GoFangDefang is a Go library for secure manipulation of Indicators of Compromise (IOCs), converting them between their original "fang" format (with special characters) and a safer "defang" format. It prevents accidental execution of potentially malicious IOCs like URLs, IPs, domains, or subdomains.
A CLI client for malware bazaar and urlhaus feed
Configuration Extractor for Warzone RAT
Static configuration extractor for the ESXI/Linux variant of BlackMatter Ransomware
URL / IP / Email defanging with Golang. Make IoC harmless.
This repository is a collection of reports of malicious packages.
Download a Bunch of Malware for Demos and Testing
Malice #totalhash Plugin
Malice Dr.WEB AntiVirus Plugin
Commandline utility to interact with the Malpedia service
Malice McAfee AntiVirus Plugin
A compact and simple program targeting SIMATIC S7 Programmable Logic Controllers (PLCs) written in Go. Allowing for cross-compilation to target multiple operating systems out of the box, SIMATIC-SMACKDOWN enumerates networks for S7 devices before launching a distributed attack to STOP PLC CPUs.
This will encrypt 🤐 your files using AES-256-CTR, then RSA-4096😵💫to secure the exchange with the server, or can use the Tor SOCKS5 Proxy😎 -- Functionality is based on Cryptolocker😈 ransomware. Be cool😉
Add a description, image, and links to the malware-research topic page so that developers can more easily learn about it.
To associate your repository with the malware-research topic, visit your repo's landing page and select "manage topics."