Malware
Showing 32 of 32 projects
A unified hosts file aggregator that blocks ads, malware, and other unwanted content by merging reputable sources.
A rogue Access Point framework for conducting Wi-Fi security testing and phishing attacks during red team engagements.
A live malware repository providing encrypted samples and source code for educational malware analysis and research.
A malicious traffic detection system that monitors network traffic for blacklisted threats and suspicious activities using public feeds and heuristics.
A proof-of-concept malware application that implements common anti-analysis techniques to test security tools and sandbox environments.
A generic Android deobfuscator that uses virtual execution to simplify obfuscated code for human analysis.
A memory forensics framework for extracting digital artifacts from volatile memory (RAM) samples across Windows, Linux, and macOS.
A static analysis tool that automatically extracts and deobfuscates strings from malware binaries.
A testing tool that detects virtual machines and malware analysis environments using techniques observed in real malware.
An advanced malware sandbox for automated configuration and payload extraction with dynamic unpacking and anti-evasion capabilities.
An open-source malware analysis framework that functions as a self-hosted alternative to VirusTotal.
A Python tool that generates YARA rules for malware detection by filtering out strings and opcodes that appear in goodware.
A repository of publicly-available reports and blogs on APT (Advanced Persistent Threat) campaigns, activity, and software, organized by year.
A collection of real-world malware samples, analysis exercises, and training resources for cybersecurity education and research.
An automated phishing email analysis tool that extracts observables, integrates with TheHive/Cortex/MISP, and calculates verdicts.
A malware communication analyzer that visualizes network traffic and cross-references it with known malware sources.
A static analyzer for PE executables that identifies malicious indicators and aids in malware assessment.
A security feed collection and processing solution for IT security teams using message queuing protocols.
A curated collection of macOS and iOS security resources including tools, research, malware analysis, and hardening guides.
A utility for analyzing and studying malicious JavaScript by emulating a Windows JScript environment.
Route-level file upload security for Node.js, scanning files for malware, spoofing, and risky archives before storage.
A WinDBG extension for viewing and analyzing Windows kernel anomalies to detect rootkits and system modifications.
A modular file scanning and analysis framework that automates running a suite of tools and aggregates their output.
A Volatility plugin that extracts configuration data and decoded strings from known malware families in memory images.
A Windows Batch and Unix Bash script suite for comprehensive host forensic data collection during incident response.
A Python RESTful API framework for querying multiple online malware analysis and threat intelligence services.
A Python telnet honeypot that emulates a shell environment to catch IoT botnet binaries and analyze malware networks.
A curated list of tools and resources for understanding, detecting, and removing malware persistence techniques across operating systems.
A Windows tool for malware researchers to explore and test anti-debug techniques across modern debuggers.
A curated collection of information and tools for detecting, analyzing, and hunting malware persistence mechanisms across operating systems.
An open-source dynamic analysis framework that neutralizes anti-analysis behavior in evasive malware during dissection.
An open dataset for learning-based temporal analysis of PE malware, containing over 130,000 Windows PE files with feature vectors and metadata.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.