Malware Research
Showing 30 of 30 projects
A live malware repository providing encrypted samples and source code for educational malware analysis and research.
A curated list of awesome YARA rules, tools, and resources for malware researchers and security professionals.
A testing tool that detects virtual machines and malware analysis environments using techniques observed in real malware.
An advanced malware sandbox for automated configuration and payload extraction with dynamic unpacking and anti-evasion capabilities.
Identifies compilers, packers, obfuscators, and other characteristics in Android APK and DEX files.
A Python tool that generates YARA rules for malware detection by filtering out strings and opcodes that appear in goodware.
A Python RDP man-in-the-middle tool and library for intercepting, monitoring, and analyzing Remote Desktop Protocol connections.
A curated list of awesome resources (papers, tools, packers) related to executable packing, unpacking, and detection for malware analysis and cybersecurity.
A curated list of awesome resources, tools, and literature on executable packing, unpacking, and detection for malware analysis and cybersecurity.
A curated list of awesome resources for executable packing, unpacking, and detection, covering packers, tools, and literature.
An extendable Python tool to extract and aggregate Indicators of Compromise (IOCs) from various threat intelligence feeds.
An extendable Python tool to extract and aggregate Indicators of Compromise (IOCs) from various threat intelligence feeds.
A dynamic unpacker for Windows malware that deploys packed executables, waits for payload unpacking, and dumps the extracted code.
A freeware reversing tool for PE files, designed for fast and flexible malware analysis.
A command-line toolkit for analyzing and working with Portable Executable (PE) binaries on multiple platforms.
A collection of nearly 40,000 JavaScript malware samples for security research and analysis.
A WinDBG extension for viewing and analyzing Windows kernel anomalies to detect rootkits and system modifications.
A Python library and CLI for extracting and refanging defanged Indicators of Compromise (IOCs) from text.
A portable utility that identifies linkers, compilers, and packers used to create executable files across Windows, Linux, and macOS.
A collaborative malware analysis framework for storing samples, automating analysis, and sharing insights via IDA Pro integration.
A Python telnet honeypot that emulates a shell environment to catch IoT botnet binaries and analyze malware networks.
A C++ Windows malware analysis tool that uses memory and code hooks to detect and extract hidden code from packers.
A Windows tool for malware researchers to explore and test anti-debug techniques across modern debuggers.
A dynamic Java code instrumentation SDK for Android apps to profile runtime, examine coverage, and track high-risk behaviors without source code.
A modular botnet command & control monitor for tracking and researching malware networks via IRC, HTTP, and XMPP.
A Python library and CLI for creating interactive visualizations of security and system logs like Cuckoo JSON and ProcMon CSV.
An open-source dynamic analysis framework that neutralizes anti-analysis behavior in evasive malware during dissection.
A modular Python tool that collects threat intelligence from multiple sources for files identified by their hash.
A WinAppDbg script that automates malware unpacking by detecting unpacking behaviors and dumping decrypted memory.
An open dataset for learning-based temporal analysis of PE malware, containing over 130,000 Windows PE files with feature vectors and metadata.
Related Tags
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.