156 skills found · Page 1 of 6
a0rtega / PafishPafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
alexandreborges / MalwoverviewMalwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, IPInfo, Shodan, AbuseIPDB, GreyNoise, URLScan.io, Whois/RDAP, NIST, and VulnCheck. Supports LLM enrichment, IOC extraction, YARA scanning, and Android analysis.
decalage2 / Oletoolsoletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
CYB3RMX / Qu1cksc0peAll-in-One malware analysis tool.
glmcdona / Process DumpWindows tool for dumping malware PE files from memory back to disk for analysis.
eliasgranderubio / Dagdaa tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
forrest-orr / MonetaMoneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
mandiant / StringsifterA machine learning tool that ranks strings based on their relevance for malware analysis.
guelfoweb / PeframePEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
svent / JsdetoxA Javascript malware analysis tool
felixweyne / ImaginaryC2Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which captures HTTP requests towards selectively chosen domains/IPs. Additionally, the tool aims to make it easy to replay captured Command-and-Control responses/served payloads.
monnappa22 / LimonLimon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools
rieck / MalheurA Tool for Automatic Analysis of Malware Behavior
REMnux / DockerThis repository contains Dockerfiles for building Docker images of popular malware analysis tools, which are distributed through the REMnux repository on Docker Hub.
NavyTitanium / Fake Sandbox ArtifactsThis script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools
felixweyne / ProcessSpawnControlProcess Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launched processes, and gives the analyst the option to either keep the process suspended, or to resume it.
SpiderLabs / Malware AnalysisA repository of tools and scripts related to malware analysis
Malandrone / PowerDecodePowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs code dynamic analysis, extracting malware hosting URLs and checking http response.It can also detect if the malware attempts to inject shellcode into memory.
Dynetics / MalfunctionMalware Analysis Tool using Function Level Fuzzy Hashing
netspooky / InhaleA malware analysis and classification tool.
