A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to speed up resolutions.
updated at April 24, 2024, 5:25 p.m.
Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools
updated at April 24, 2024, 5:25 p.m.
Collaborative malware analysis framework
updated at April 24, 2024, 5:45 p.m.
Minimal, consistent Python API for building integrations with malware sandboxes.
updated at April 24, 2024, 6:58 p.m.
Reverse engineering tool for virtualization wrappers
updated at April 28, 2024, 11:32 p.m.
Pythonic interface to the Internet Storm Center / DShield API.
updated at April 30, 2024, 8:17 p.m.
DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.
updated at May 2, 2024, 3:15 p.m.
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
updated at May 4, 2024, 10:32 a.m.
Defanged Indicator of Compromise (IOC) Extractor.
updated at May 4, 2024, 11:14 a.m.
Visualize network topologies and collect graph statistics based on pcap files
updated at May 4, 2024, 5:21 p.m.