MalSys
Malsys is a project designed to validate and analyze files for potential malware signatures.
Install / Use
/learn @UncleJ4ck/MalSysREADME
MalSys
Overview
MalSys is a versatile toolkit designed to assist in your malware analysis endeavors. As of now, it primarily leverages the , to retrieve information pertinent to a given file or hash. In essence, MalSys functions as a command line interface (CLI) tool that encapsulates most of the features available on the MalwareBazar API.
Installation
git clone https://github.com/UncleJ4ck/MalSys
cd MalSys
pip3 install -r requirements.txt
python3 main.py
python3 main.py <operation> <arguments>
Capabilities
- Download a sample from malware bazar
python3 main.py download_sample --hash <SHA256 hash of the malware sample
<p align="center"> <a href="./assets/download.png"> <img src="./assets/download.png"> </a> </p>This command will download, unzip, and store the sample as a .exe or .bin file (or another format depending on the sample's filetype).
- Scans a file using a specified file path or hash
python3 main.py scan_file --hash 'hash of the sample'
python3 main.py scan_file --file 'path of the sample'
- Query an icon dhash using a specified file or hash</summary>
python3 main.py query_icon_dhash --hash 'hash'
<p align="center"> <a href="./assets/dhash_1.png"> <img src="./assets/dhash_1.png"> </a> </p>This command will query the hash using the MalwareBazar API.
python3 main.py query_icon_dhash --file 'sample'
The features within MalSys mirror those available on the MalwareBazar API website, and this holds true across all operations.
Dockerfile
docker run -it malsys:latest
docker run -it malsys:latest python3 main.py 'operation' 'arguments'
TO-DO
- [ ] Addition of other free API services such as AlienVault, etc.
- [ ] Implementation of features like IOC scanning and Yara Generation
- [ ] Bug fixes
- [ ] Incorporation of live dynamic analysis via sandboxing and other methods
Related Skills
diffs
337.7kUse the diffs tool to produce real, shareable diffs (viewer URL, file artifact, or both) instead of manual edit summaries.
clearshot
Structured screenshot analysis for UI implementation and critique. Analyzes every UI screenshot with a 5×5 spatial grid, full element inventory, and design system extraction — facts and taste together, every time. Escalates to full implementation blueprint when building. Trigger on any digital interface image file (png, jpg, gif, webp — websites, apps, dashboards, mockups, wireframes) or commands like 'analyse this screenshot,' 'rebuild this,' 'match this design,' 'clone this.' Skip for non-UI images (photos, memes, charts) unless the user explicitly wants to build a UI from them. Does NOT trigger on HTML source code, CSS, SVGs, or any code pasted as text.
openpencil
1.8kThe world's first open-source AI-native vector design tool and the first to feature concurrent Agent Teams. Design-as-Code. Turn prompts into UI directly on the live canvas. A modern alternative to Pencil.
animation-guide
A design system built with Base UI
