Trending repositories for topic malware-analysis

UNIX-like reverse engineering framework and command-line toolset

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Program for determining types of files for Windows, Linux and MacOS.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...

State-of-the-art native debugging tools

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leakin...

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Defund the Police.

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

A curated list of awesome YARA rules, tools, and people.

Tools and Techniques for Blue Team / Incident Response

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

Reverse Engineer's Toolkit

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Free educational courses in reverse engineering, malware analysis, and programming

Loading Remote AES Encrypted PE in memory , Decrypted it and run it

A curated list of awesome Android Reverse Engineering training, resources, and tools.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive i...

A curated list of awesome malware analysis tools and resources

Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...

Cross-platform library for parsing and building PE\PE+ formats

Free educational courses in reverse engineering, malware analysis, and programming

Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

Cybersecurity research results. Simple C/C++ and Python implementations

Final Year Malware Detection Project with PPT, Research Paper, code and Synopsis. Malware detection project by Machine Learning ALgorithms.

Livro: Engenharia Reversa - Fundamentos e Prática

Malware samples for analysis, researchers, anti-virus and system protection testing (1600+ Malware-samples!).

Loading Remote AES Encrypted PE in memory , Decrypted it and run it

FLARE Team's Binary Navigator

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.

A curated list of awesome Android Reverse Engineering training, resources, and tools.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

State-of-the-art native debugging tools

The essential toolkit for reversing, malware analysis, and cracking

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

Defund the Police.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Free educational courses in reverse engineering, malware analysis, and programming

Tools and Techniques for Blue Team / Incident Response

The FLARE team's open-source tool to identify capabilities in executable files.

Malware Configuration And Payload Extraction

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A curated list of awesome YARA rules, tools, and people.

State-of-the-art native debugging tools

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Threa...

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leakin...

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to anyone's system.

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive i...

Free educational courses in reverse engineering, malware analysis, and programming

Defanger is a Notepad++ plugin that defangs/refangs malicious IOCs.

Just another malware database.

A curated list of awesome malware analysis tools and resources

Sanctum is a proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...

Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD services. It can be used to prevent supply chain attacks, detec...

Windows-based Reverse Engineering Toolkit "All-In-One", Built for Security (Malware analysis, Penetration testing) & Educational purposes.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

FLARE Team's Binary Navigator

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.

Cross-platform library for parsing and building PE\PE+ formats

Reverse Engineering and Malware Analysis Roadmap

Android malware source code dataset collected from public resources.

Cybersecurity research results. Simple C/C++ and Python implementations

Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...

Program for determining types of files for Windows, Linux and MacOS.

UNIX-like reverse engineering framework and command-line toolset

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

The FLARE team's open-source tool to identify capabilities in executable files.

Defund the Police.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Rapidly initialize Windows Sanbox for malware analysis and reverse engineering

Malware Configuration And Payload Extraction

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

State-of-the-art native debugging tools

Tools and Techniques for Blue Team / Incident Response

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

A curated list of awesome Android Reverse Engineering training, resources, and tools.

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

Rapidly initialize Windows Sanbox for malware analysis and reverse engineering

Just another malware database.

My projects to understand malware development and detection. Use responsibly. I'm not responsible if you cause unauthorised damage to anyone's system.

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive i...

Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

Sanctum is a proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

Reverse Engineering and Malware Analysis Roadmap

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A curated list of awesome binary analysis automation training, resources, and tools.

Free educational courses in reverse engineering, malware analysis, and programming

Extracted Yara rules from Windows Defender mpavbase and mpasbase

A curated list of awesome malware analysis tools and resources

Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

Deep Linux runtime visibility meets Wireshark

Windows-based Reverse Engineering Toolkit "All-In-One", Built for Security (Malware analysis, Penetration testing) & Educational purposes.

Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.

Cyber-Security Bible! Theory and Tools, Kali Linux, Penetration Testing, Bug Bounty, CTFs, Malware Analysis, Cryptography, Secure Programming, Web App Security, Cloud Security, Devsecops, Ethical Hack...

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.

Collection of Jupyter Notebooks by @fr0gger_

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

GUI analyzer for deep-diving into PDF files. Detect malicious payloads, understand object relationships, and extract key information for threat analysis.

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.

Deep Linux runtime visibility meets Wireshark

FLARE Team's Binary Navigator

A simple crossplatform heuristic PE-analyzer

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

Rapidly initialize Windows Sanbox for malware analysis and reverse engineering

Nyxelf is a highly effective tool tailored for analyzing malicious Linux ELF binaries, offering comprehensive support for both static and dynamic analysis techniques.

Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports

Reverse Engineering and Malware Analysis Roadmap

XZ backdoor reverse engineering

A collection of modules and scripts to help with analyzing Nim binaries

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive i...

Symbol Recovery Tool for Nuitka Binaries

Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis

A simple commandline application to automatically decrypt strings from Obfuscator protected binaries

Sanctum is a proof-of-concept EDR, designed to detect modern malware techniques, above and beyond the capabilities of antivirus. Built in Rust.

ThingFinder is a tool designed to facilitate searching and analysing code, whether it's source code or compiled binary executables. It provides a modular interface for adding new parsers for identifyi...

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and ...

UNIX-like reverse engineering framework and command-line toolset

Program for determining types of files for Windows, Linux and MacOS.

Exploit Development and Reverse Engineering with GDB & LLDB Made Easy

Defund the Police.

The FLARE team's open-source tool to identify capabilities in executable files.

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

IntelOwl: manage your Threat Intelligence at scale

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

GUI analyzer for deep-diving into PDF files. Detect malicious payloads, understand object relationships, and extract key information for threat analysis.

Tools and Techniques for Blue Team / Incident Response

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Malware Configuration And Payload Extraction

State-of-the-art native debugging tools

LIEF - Library to Instrument Executable Formats (C++, Python, Rust)

Portable Executable reversing tool with a friendly GUI

A curated list of awesome YARA rules, tools, and people.

GUI analyzer for deep-diving into PDF files. Detect malicious payloads, understand object relationships, and extract key information for threat analysis.

IDA Pro plugin with a rich set of features: decryption, deobfuscation, patching, lib code recognition and various pseudocode transformations

A comprehensive collection of cheatsheets for reverse engineering, binary analysis, and assembly programming tools. This repository serves as a one-stop reference for security researchers, reverse eng...

Nyxelf is a highly effective tool tailored for analyzing malicious Linux ELF binaries, offering comprehensive support for both static and dynamic analysis techniques.

Deep Linux runtime visibility meets Wireshark

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive i...

FLARE Team's Binary Navigator

Native Python3 bindings for @horsicq's Detect-It-Easy

#supply #chain #attack #detection

Free educational courses in reverse engineering, malware analysis, and programming

XZ backdoor reverse engineering

RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging

A curated list of awesome binary analysis automation training, resources, and tools.

Extracted Yara rules from Windows Defender mpavbase and mpasbase

This repo shares blue team security notes and resources for detecting and preventing cyber attacks. Topics covered include email, file, log, malware, memory forensics, and packet analysis.

Android malware source code dataset collected from public resources.

MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analyzes headers, APIs, and strings, giving quick insights for threa...

A book covering the whole spectrum of Malware

Windows-based Reverse Engineering Toolkit "All-In-One", Built for Security (Malware analysis, Penetration testing) & Educational purposes.

Anomaly based Malware Detection using Machine Learning (PE and URL)