beta

awesome-malware-analysis (124)

Subscribe

onlurking/awesome-infosec

github.com

A curated list of awesome infosec courses and training resources.

courses infosec penetration-testing pentest security-professionals
- Add
1
hslatman/awesome-industrial-control-system-security

github.com

A curated list of resources related to Industrial Control System (ICS) security.

python
- Add
1
cugu/awesome-forensics

github.com

A curated list of awesome forensic analysis tools and resources

computer-forensics dfir digital-forensics forensic-analysis open-source
- Add
1
paragonie/awesome-appsec

github.com

A curated list of resources for learning about application security

application-security curated php reading-list security security-experts
- Add
1
endgameinc/ember

github.com

jupyter notebook
- Add
1
aptnotes/data

github.com

APTnotes data

analysis apt malware
- Add
1
corkami/pics

github.com

Posters, drawings...

assembly
- Add
1
a0rtega/pafish

github.com

Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in...

analysis-environments c malware malware-families reverse-engineering virtual-machine
- Add
1
uppusaikiran/malware-organiser

github.com

A simple tool to organise large malicious/benign files into a organised Structure.

clean-file malicious malware malware-analysis malware-research python
- Add
1
misterch0c/malSploitBase

github.com

Malware exploits
- Add
1
LordNoteworthy/al-khaser

github.com

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

anti-analysis anti-debugging anti-emulation anti-sandbox anti-vm c++
- Add
1
ANSSI-FR/polichombr

github.com

Collaborative malware analysis framework

ida idapro malware-analysis malware-research python reverse-engineering
- Add
1
Defense-Cyber-Crime-Center/DC3-MWCP

github.com

python
- Add
1
fireeye/flare-vm

github.com

powershell
- Add
1
sroberts/malwarehouse

github.com

A warehouse for your malware

python
- Add
1
williballenthin/python-evt

github.com

Pure Python parser for classic Windows Event Log files (.evt)

python
- Add
1
merces/aleph

github.com

An Open Source Malware Analysis Pipeline System

css
- Add
1
keydet89/RegRipper2.8

github.com

RegRipper version 2.8

perl
- Add
1
swwwolf/wdbgark

github.com

WinDBG Anti-RootKit Extension

c++ c-plus-plus kernel-mode malware malware-analysis malware-research
- Add
1
OMENScan/AChoir

github.com

Windows Live Artifacts Acquisition Script

c++
- Add
1
kevthehermit/VolUtility

github.com

Web App for Volatility framework

python
- Add
1
ShaneK2/inVtero.net

github.com

inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities....

c# forensics hypervisor memory-dump memory-hacking reverse-engineering
- Add
1
ytisf/muninn

github.com

A short and small memory forensics helper.

memory-forensics python volatility
- Add
1
aim4r/VolDiff

github.com

VolDiff: Malware Memory Footprint Analysis based on Volatility

python
- Add
1
sketchymoose/TotalRecall

github.com

Based on the Volatility framework, this script will run various plugins as well as create a...

python
- Add
1
504ensicsLabs/DAMM

github.com

Differential Analysis of Malware in Memory

python
- Add
1
ch3k1/squidmagic

github.com

analyze a web-based network traffic to detect central command and control servers

incident-response network-traffic proxy-server python squid squidmagic
- Add
1
RamadhanAmizudin/python-icap-yara

github.com

An ICAP Server with yara scanner for URL and content.

icap icap-server malware-analysis python squid-proxy yara
- Add
1
JamesHabben/evolve

github.com

Web interface for the Volatility Memory Forensics Framework

javascript
- Add
1
mateuszk87/PcapViz

github.com

Visualize network topologies and collect graph statistics based on pcap files

network-topology pcap python security-tools
- Add
1
stamparm/maltrail

github.com

Malicious traffic detection system

heuristics intrusion-detection malware python security sensor
- Add
1
jpr5/ngrep

github.com

ngrep is like GNU grep applied to the network layer. It's a PCAP-based tool that allows...

c grepping sniffer
- Add
1
jbremer/httpreplay

github.com

Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.

python
- Add
1
MITRECND/chopshop

github.com

Protocol Analysis/Decoder Framework

python
- Add
1
lmco/laikaboss

github.com

Laika BOSS: Object Scanning System

python
- Add
1
pjlantz/Hale

github.com

Botnet command & control monitor

python
- Add
1
vivisect/vivisect

github.com

python
- Add
1
x64dbg

github.com
- Add
1
omriher/CapTipper

github.com

Malicious HTTP traffic explorer

python
- Add
1
hempnall/broyara

github.com

integrating bro into yara

c++
- Add
1
Cisco-Talos/pyrebox

github.com

Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU

c
- Add
1
vmt/udis86

github.com

Disassembler Library for x86 and x86-64

c
- Add
1
Cisco-Talos/ROPMEMU

github.com

ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.

python
- Add
1
pidydx/SMRT

github.com

Sublime Malware Research Tool

python
- Add
1
joxeankoret/pyew

github.com

Official repository for Pyew.

python
- Add
1
cmu-sei/pharos

github.com

Automated static analysis tools for binary programs

binary-analysis c++ reverse-engineering
- Add
1
moyix/panda

github.com

Deprecated repo for PANDA 1.0 – see PANDA 2.0 repository

c
- Add
1
codypierce/hackers-grep

github.com

hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug...

python
- Add
1
sycurelab/DECAF

github.com

DECAF(short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This...

c
- Add
1
hugsy/codebro

github.com

Web based code browser using clang to provide basic code analysis.

html
- Add
1