CERT-Polska / malduckLinks
Malduck is your ducky companion in malware analysis journeys
☆337Updated last month
Alternatives and similar repositories for malduck
Users that are interested in malduck are comparing it to the libraries listed below
Sorting:
- Malware repository component for samples & static configuration with REST API interface.☆359Updated this week
- Distributed malware processing framework based on Python, Redis and S3.☆430Updated 2 weeks ago
- A Binary Genetic Traits Lexer Framework☆495Updated 4 months ago
- Research notes☆125Updated 6 months ago
- Dynamic unpacker based on PE-sieve☆736Updated 3 weeks ago
- MBC content in markdown☆457Updated last week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆600Updated this week
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆179Updated 5 months ago
- YARA malware query accelerator (web frontend)☆431Updated 3 months ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆581Updated last year
- Collection of private Yara rules.☆357Updated 2 months ago
- ☆106Updated last year
- Assortment of hashing algorithms used in malware☆363Updated 3 weeks ago
- A golang CLI tool to download malware from a variety of sources.☆146Updated this week
- c2 traffic☆189Updated 2 years ago
- High Octane Triage Analysis☆740Updated this week
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…☆394Updated last month
- Generating YARA rules based on binary code☆212Updated 3 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆249Updated 2 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆116Updated 2 years ago
- ☆149Updated 2 years ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆128Updated last year
- Community modules for CAPE Sandbox☆100Updated last week
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆236Updated 2 years ago
- Code snips and notes☆136Updated 3 years ago
- capemon: CAPE's monitor☆123Updated 2 weeks ago
- Python scripts for Malware Bazaar☆153Updated last year
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year