pharos by cmu-sei

Automated static analysis tools for binary programs

updated at May 6, 2024, 7:45 a.m.

77 +0

1,489 +1

183 +0

binaryalert by airbnb

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

updated at May 6, 2024, 8:49 p.m.

74 +0

1,380 -2

201 +0

malware-persistence by Karneades

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

updated at May 6, 2024, 8:49 p.m.

8 +0

155 -1

17 +0

bulk_extractor by simsong

This is the development tree. Production downloads are at:

updated at May 7, 2024, 1:56 a.m.

74 +0

1,011 +1

180 +0

ngrep by jpr5

ngrep is like GNU grep applied to the network layer. It's a PCAP-based tool that allows you to specify an extended regular or hexadecimal expression to match against data payloads of packets. It understands many kinds of protocols, including IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw, across a wide variety of interface types, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.

updated at May 7, 2024, 8:44 a.m.

23 +1

851 +3

98 +0

barf-project by programa-stic

BARF : A multiplatform open source Binary Analysis and Reverse engineering Framework

updated at May 7, 2024, 11:10 a.m.

69 +0

1,391 +1

182 +0

peframe by guelfoweb

PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.

updated at May 7, 2024, 11:12 a.m.

52 +0

594 -1

150 +0

Manalyze by JusticeRage

A static analyzer for PE executables.

updated at May 7, 2024, 11:12 a.m.

64 +0

993 -1

161 +1

honeytrap by honeytrap

Advanced Honeypot framework.

updated at May 7, 2024, 11:12 a.m.

50 +0

1,194 -1

177 -1

pyrebox by Cisco-Talos

Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU

updated at May 7, 2024, 11:12 a.m.

95 +0

1,638 -1

249 +0

mac-a-mal by phdphuc

The current repository contains all the scripts needed to build kernel-mode mac-a-mal malicious activity hooking on macOS.

updated at May 7, 2024, 11:13 a.m.

10 +0

82 +1

24 +0

Zeus by Visgean

NOT MY CODE! Zeus trojan horse - leaked in 2011, I am not the author. This repository is for study purposes only, do not message me about your lame hacking attempts.

updated at May 7, 2024, 12:20 p.m.

138 +0

1,354 +2

693 +1

cuckoo-modified-api by keithjjones

A Python library to interface with a cuckoo-modified instance

updated at May 7, 2024, 12:53 p.m.

6 +0

19 +1

7 +0

cuckoo-modified by brad-accuvant

Modified edition of cuckoo

updated at May 7, 2024, 12:54 p.m.

57 +0

268 +1

103 +0

flare-fakenet-ng by mandiant

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

updated at May 8, 2024, 1:16 a.m.

112 +0

1,703 +1

354 +0

Krakatau by Storyyeller

Java decompiler, assembler, and disassembler

updated at May 8, 2024, 1:25 a.m.

95 +0

1,936 +3

216 -50

Noriben by Rurik

Noriben - Portable, Simple, Malware Analysis Sandbox

updated at May 8, 2024, 4:32 a.m.

90 +0

1,073 +1

221 +0

quark-engine by quark-engine

Dig Vulnerabilities in the BlackBox

updated at May 8, 2024, 11:43 a.m.

41 +0

1,231 +1

163 +0

laikaboss by lmco

Laika BOSS: Object Scanning System

updated at May 8, 2024, 2:02 p.m.

132 +0

720 +1

155 +0

multiscanner by mitre

Modular file scanning/analysis framework

updated at May 8, 2024, 7:09 p.m.

59 +0

610 +0

126 +1