A not so awesome list of malware gems for aspiring malware analysts
☆828Feb 7, 2023Updated 3 years ago
Alternatives and similar repositories for malware-gems
Users that are interested in malware-gems are comparing it to the libraries listed below
Sorting:
- Materials for Windows Malware Analysis training (volume 1)☆2,028Jul 1, 2024Updated last year
- Malware samples, analysis exercises and other interesting resources.☆1,614Jan 13, 2024Updated 2 years ago
- Some of my publicly available Malware analysis and Reverse engineering.☆936Jun 3, 2024Updated last year
- Resources for Windows exploit development☆1,649Dec 20, 2021Updated 4 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆723Dec 26, 2022Updated 3 years ago
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,547Jan 20, 2026Updated last month
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆754Nov 16, 2021Updated 4 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,862Updated this week
- Quickly debug shellcode extracted during malware analysis☆626May 23, 2023Updated 2 years ago
- A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering env…☆8,396Dec 23, 2025Updated 2 months ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,909Feb 23, 2026Updated last week
- Dynamic unpacker based on PE-sieve☆799Sep 13, 2025Updated 5 months ago
- ☆2,168Feb 21, 2023Updated 3 years ago
- Defund the Police.☆13,486Jun 7, 2024Updated last year
- Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories☆1,161Nov 14, 2020Updated 5 years ago
- Interesting APT Report Collection And Some Special IOCs☆2,929Updated this week
- A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.☆1,524Feb 20, 2026Updated 2 weeks ago
- APT & CyberCriminal Campaign Collection☆4,043Jul 25, 2024Updated last year
- This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be…☆684Jul 6, 2024Updated last year
- Everything related to Linux Forensics☆717Jul 13, 2023Updated 2 years ago
- Different learning materials☆229Sep 19, 2025Updated 5 months ago
- Windows Events Attack Samples☆2,517Jan 24, 2023Updated 3 years ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,564Oct 31, 2025Updated 4 months ago
- Research code & papers from members of vx-underground.☆1,352Dec 7, 2021Updated 4 years ago
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆864Jan 20, 2022Updated 4 years ago
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆931Mar 26, 2024Updated last year
- Course materials for Malware Analysis by RPISEC☆4,002Aug 26, 2022Updated 3 years ago
- Organized list of my malware development resources☆1,701May 16, 2022Updated 3 years ago
- A workshop about Malware Development☆1,765Jun 2, 2023Updated 2 years ago
- ☆1,073May 18, 2024Updated last year
- Windows kernel and user mode emulation.☆1,868Updated this week
- A Binary Genetic Traits Lexer Framework☆523Feb 27, 2026Updated last week
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,314Oct 31, 2025Updated 4 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 3 months ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆646Nov 7, 2025Updated 4 months ago
- WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)☆779Feb 3, 2023Updated 3 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Apr 12, 2023Updated 2 years ago