pyew by joxeankoret

Official repository for Pyew.

updated at April 24, 2024, 1:04 p.m.

32 +0

379 +1

101 +0

Zeus by Visgean

NOT MY CODE! Zeus trojan horse - leaked in 2011, I am not the author. This repository is for study purposes only, do not message me about your lame hacking attempts.

updated at April 24, 2024, 5:24 p.m.

138 +0

1,349 -1

692 +0

aleph by merces

An Open Source Malware Analysis Pipeline System

updated at April 24, 2024, 5:24 p.m.

35 +0

153 -1

53 +0

PortEx by katjahahn

Java library to analyse Portable Executable files with a special focus on malware analysis and PE malformation robustness

updated at April 24, 2024, 5:24 p.m.

43 +0

487 -1

95 +0

MaltegoVT by michael-yip

A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to speed up resolutions.

updated at April 24, 2024, 5:25 p.m.

8 +0

76 -1

22 +0

AChoir by OMENScan

Windows Live Artifacts Acquisition Script

updated at April 24, 2024, 5:25 p.m.

14 +0

175 -1

31 +0

Limon by monnappa22

Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools

updated at April 24, 2024, 5:25 p.m.

36 +0

383 -1

121 +0

malice by maliceio

VirusTotal Wanna Be - Now with 100% more Hipster

updated at April 24, 2024, 5:25 p.m.

96 +0

1,600 +0

261 +0

polichombr by ANSSI-FR

Collaborative malware analysis framework

updated at April 24, 2024, 5:45 p.m.

38 +0

372 +1

64 +0

sandboxapi by InQuest

Minimal, consistent Python API for building integrations with malware sandboxes.

updated at April 24, 2024, 6:58 p.m.

21 +0

131 +1

39 +0

AnalyzePDF by hiddenillusion

Tool to help analyze PDF files

updated at April 24, 2024, 8:36 p.m.

22 +0

170 +1

40 -1

plasma by plasma-disassembler

Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.

updated at April 24, 2024, 9:27 p.m.

149 +0

3,041 +1

278 +0

HaboMalHunter by Tencent

HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.

updated at April 24, 2024, 9:55 p.m.

55 +0

723 +1

220 +0

mailchecker by FGRibreau

Cross-language temporary (disposable/throwaway) email detection library. Covers 55 734+ fake email providers.

updated at April 24, 2024, 10:29 p.m.

37 +1

1,569 +3

238 -1

python-evt by williballenthin

Pure Python parser for classic Windows Event Log files (.evt)

updated at April 25, 2024, 3:18 a.m.

5 +0

41 +1

12 +0

wdbgark by swwwolf

WinDBG Anti-RootKit Extension

updated at April 25, 2024, 6:16 a.m.

61 +0

602 +1

176 +0

scalpel by sleuthkit

Scalpel is an open source data carving tool. It is not being actively maintained.

updated at April 25, 2024, 7:45 a.m.

43 +0

602 +1

100 +0

dionaea by DinoTools

Home of the dionaea honeypot

updated at April 25, 2024, 9:45 a.m.

44 +0

679 +2

182 +0

chopshop by MITRECND

Protocol Analysis/Decoder Framework

updated at April 25, 2024, 11:31 a.m.

71 +0

487 +1

111 +0

ember by elastic

Elastic Malware Benchmark for Empowering Researchers

updated at April 25, 2024, 12:20 p.m.

51 +0

898 +4

269 +2