A not so awesome list of malware gems for aspiring malware analysts
☆829Feb 7, 2023Updated 3 years ago
Alternatives and similar repositories for malware-gems
Users that are interested in malware-gems are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Materials for Windows Malware Analysis training (volume 1)☆2,034Jul 1, 2024Updated last year
- Malware samples, analysis exercises and other interesting resources.☆1,625Jan 13, 2024Updated 2 years ago
- Some of my publicly available Malware analysis and Reverse engineering.☆949Jun 3, 2024Updated last year
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆725Dec 26, 2022Updated 3 years ago
- Resources for Windows exploit development☆1,650Dec 20, 2021Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Malwoverview is a first response tool for threat hunting across VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, M…☆3,737Updated this week
- A small tool to unmap PE memory dumps.☆11Nov 9, 2023Updated 2 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,948Updated this week
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆759Nov 16, 2021Updated 4 years ago
- Defund the Police.☆13,608Jun 7, 2024Updated last year
- Quickly debug shellcode extracted during malware analysis☆633May 23, 2023Updated 2 years ago
- ☆2,178Apr 3, 2026Updated 2 weeks ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆8,539Mar 20, 2026Updated 3 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,542Feb 20, 2026Updated last month
- Dynamic unpacker based on PE-sieve☆804Apr 1, 2026Updated 2 weeks ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,968Updated this week
- Interesting APT Report Collection And Some Special IOCs☆2,962Updated this week
- This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be…☆689Jul 6, 2024Updated last year
- Different learning materials☆231Sep 19, 2025Updated 7 months ago
- APT & CyberCriminal Campaign Collection☆4,067Jul 25, 2024Updated last year
- Course materials for Malware Analysis by RPISEC☆4,010Aug 26, 2022Updated 3 years ago
- Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories☆1,164Nov 14, 2020Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,338Updated this week
- Windows Events Attack Samples☆2,549Jan 24, 2023Updated 3 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,611Updated this week
- A list of cyber-chef recipes and curated links☆2,200Jun 14, 2024Updated last year
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆933Mar 26, 2024Updated 2 years ago
- Organized list of my malware development resources☆1,713Apr 1, 2026Updated 2 weeks ago
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆867Jan 20, 2022Updated 4 years ago
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- Everything related to Linux Forensics☆718Jul 13, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆1,075May 18, 2024Updated last year
- Windows kernel and user mode emulation.☆1,936Apr 8, 2026Updated last week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 4 months ago
- Educational, CTF-styled labs for individuals interested in Memory Forensics☆1,855Mar 8, 2021Updated 5 years ago
- A curated list of awesome resources related to executable packing☆1,565Feb 14, 2026Updated 2 months ago
- A guide on how to write fast and memory friendly YARA rules☆167Feb 11, 2025Updated last year
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago