dionaea by DinoTools

Home of the dionaea honeypot

updated at Nov. 11, 2024, 4:39 p.m.

45 +0

713 +1

182 +0

iocs by mandiant

FireEye Publicly Shared Indicators of Compromise (IOCs)

updated at Nov. 12, 2024, 12:39 a.m.

161 +0

463 +1

117 +0

hackers-grep by codypierce

hackers-grep is a utility to search for strings in PE executables including imports, exports, and debug symbols

updated at Nov. 12, 2024, 2:27 a.m.

9 +0

170 +1

19 +0

IPinfo by hiddenillusion

Searches various online resources to try and get as much info about an IP/domain as possible.

updated at Nov. 12, 2024, 5:26 a.m.

19 +0

100 +1

28 +0

stringsifter by mandiant

A machine learning tool that ranks strings based on their relevance for malware analysis.

updated at Nov. 12, 2024, 1:17 p.m.

29 +0

681 +2

125 +0

Limon by monnappa22

Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools

updated at Nov. 12, 2024, 3:43 p.m.

38 +0

389 -1

115 +0

data by aptnotes

APTnotes data

updated at Nov. 13, 2024, 5:38 a.m.

210 +0

1,658 +3

279 +0

binaryalert by airbnb

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

updated at Nov. 13, 2024, 3:15 p.m.

73 +0

1,409 +2

187 +0

Ragpicker by robbyFux

Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus products, collecting malware for another analyzer/zoo.

updated at Nov. 13, 2024, 6:28 p.m.

15 +0

94 +1

25 +0

thug by buffer

Python low-interaction honeyclient

updated at Nov. 13, 2024, 8:07 p.m.

76 +0

994 +3

204 +2

Malcolm by idaholab

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

updated at Nov. 14, 2024, 3:24 a.m.

19 +0

360 +1

59 +0

iocextract by InQuest

Defanged Indicator of Compromise (IOC) Extractor.

updated at Nov. 14, 2024, 2:32 p.m.

28 +0

506 +1

91 +0

mailchecker by FGRibreau

Cross-language temporary (disposable/throwaway) email detection library. Covers 55 734+ fake email providers.

updated at Nov. 14, 2024, 3:27 p.m.

35 +0

1,628 +2

255 +1

mhn by pwnlandia

Modern Honey Network

updated at Nov. 14, 2024, 3:27 p.m.

243 +0

2,436 +3

631 +0

Zeus by Visgean

NOT MY CODE! Zeus trojan horse - leaked in 2011, I am not the author. This repository is for study purposes only, do not message me about your lame hacking attempts.

updated at Nov. 14, 2024, 3:42 p.m.

138 +0

1,412 +1

696 +0

honeytrap by honeytrap

Advanced Honeypot framework.

updated at Nov. 14, 2024, 8:08 p.m.

51 +0

1,226 +1

174 +0

ember by elastic

Elastic Malware Benchmark for Empowering Researchers

updated at Nov. 14, 2024, 9:26 p.m.

52 +0

946 +1

277 +0

vivisect by vivisect

None

updated at Nov. 15, 2024, 12:10 a.m.

70 +0

939 +1

187 +0

malcom by tomchop

Malcom - Malware Communications Analyzer

updated at Nov. 15, 2024, 2:11 a.m.

131 +0

1,155 +1

215 +0

dnstwist by elceef

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

updated at Nov. 15, 2024, 2:12 a.m.

155 +0

4,912 +11

775 +2