theZoo by ytisf

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

updated at Nov. 17, 2024, 1:54 a.m.

811 +0

11,323 +21

2,514 +1

angr by angr

A powerful and user-friendly binary analysis platform!

updated at Nov. 17, 2024, 1:35 a.m.

186 -1

7,594 +16

1,083 +0

xortool by hellman

A tool to analyze multi-byte xor cipher

updated at Nov. 17, 2024, 12:14 a.m.

48 +0

1,398 +3

173 +1

Nauz-File-Detector by horsicq

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

updated at Nov. 17, 2024, 12:07 a.m.

28 +0

525 +0

80 +0

bulk_extractor by simsong

This is the development tree. Production downloads are at:

updated at Nov. 17, 2024, 12:02 a.m.

76 +0

1,115 +3

187 +0

cowrie by cowrie

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

updated at Nov. 16, 2024, 11:59 p.m.

123 -1

5,201 +17

889 +0

maltrail by stamparm

Malicious traffic detection system

updated at Nov. 16, 2024, 11:30 p.m.

229 -1

6,535 +19

1,083 +0

capstone by capstone-engine

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

updated at Nov. 16, 2024, 10:18 p.m.

299 +0

7,608 +17

1,555 -1

dnSpy by dnSpy

.NET debugger and assembly editor

updated at Nov. 16, 2024, 9:23 p.m.

991 -1

26,649 +42

5,110 +7

arkime by arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

updated at Nov. 16, 2024, 9:14 p.m.

351 +0

6,337 +7

1,042 +1

VirtualDeobfuscator by jnraber

Reverse engineering tool for virtualization wrappers

updated at Nov. 16, 2024, 8:12 p.m.

7 +0

133 +1

24 +0

de4dot by de4dot

.NET deobfuscator and unpacker.

updated at Nov. 16, 2024, 7:55 p.m.

514 +0

6,975 +10

2,692 +0

IDR by crypto2011

Interactive Delphi Reconstructor

updated at Nov. 16, 2024, 7:46 p.m.

83 +0

968 +4

224 -1

flare-floss by mandiant

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

updated at Nov. 16, 2024, 7:34 p.m.

132 +0

3,253 +7

453 +1

capa by mandiant

The FLARE team's open-source tool to identify capabilities in executable files.

updated at Nov. 16, 2024, 7:08 p.m.

82 +0

4,875 +18

560 +2

Malware by RPISEC

Course materials for Malware Analysis by RPISEC

updated at Nov. 16, 2024, 4:56 p.m.

329 +0

3,767 +5

785 -1

yarGen by Neo23x0

yarGen is a generator for YARA rules

updated at Nov. 16, 2024, 4:29 p.m.

91 +0

1,555 +3

281 +0

quark-engine by quark-engine

Quark Agent - Your AI-powered Android APK Analyst

updated at Nov. 16, 2024, 4:18 p.m.

42 +0

1,328 +5

170 +0

Scylla by NtQuery

Imports Reconstructor

updated at Nov. 16, 2024, 3:01 p.m.

55 +0

1,116 +7

232 +0

peda by longld

PEDA - Python Exploit Development Assistance for GDB

updated at Nov. 16, 2024, 2:55 p.m.

200 +0

5,900 +8

807 +1