Repository navigation
malware-detection
- Website
- Wikipedia
Collection of malware source code for a variety of platforms in an array of different programming languages.
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
A curated list of awesome YARA rules, tools, and people.
Android Reverse-Engineering Workbench for VS Code
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
ReversingLabs YARA Rules
APK/DEX detector for Windows, Linux and MacOS.
TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.
Linker/Compiler/Tool detector for Windows, Linux and MacOS.
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
Reverse Engineering and Malware Analysis Roadmap
Drltrace is a library calls tracer for Windows and Linux applications.
An open source framework for enterprise level automated analysis.
AssemblyLine 4: File triage and malware analysis