adava / CnCHunterLinks
This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
☆43Updated last year
Alternatives and similar repositories for CnCHunter
Users that are interested in CnCHunter are comparing it to the libraries listed below
Sorting:
- Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network☆25Updated 4 years ago
- This repository contains dynamic and static tools for IoT malware analysis☆21Updated 3 years ago
- My scripts to deobfuscate APT32 malware☆27Updated 3 years ago
- ☆25Updated 2 years ago
- Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"☆17Updated 6 months ago
- Framework for Adversarial Malware Evaluation.☆34Updated 4 months ago
- Paracosme is a zero-click remote memory corruption exploit that compromises ICONICS Genesis64 which was demonstrated successfully on stag…☆89Updated last year
- Powershell script deobfuscation using AST in Python☆69Updated last year
- A small utility to deal with malware embedded hashes.☆52Updated last year
- ssdeep cluster analysis for malware files☆31Updated 5 years ago
- PackGenome: Automatically Generating Robust YARA Rules for Accurate Malware Packer Detection☆27Updated last year
- The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…☆17Updated 2 years ago
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.☆61Updated 2 years ago
- Repository of Yara rules created by the Stratosphere team☆26Updated 4 years ago
- Code for the paper "EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis"☆31Updated last year
- A Semantics-Enhanced Learnable Vulnerability Detector☆42Updated 3 years ago
- The malsource dataset☆11Updated 3 years ago
- Cisco ASA Software and ASDM Security Research☆85Updated 2 years ago
- Code for Benchmarking two ML Approaches performing Authorship Attribution☆39Updated 3 years ago
- ELF Sectional docking payload injector system☆21Updated 3 years ago
- Maco - Malware config extractor framework☆37Updated last month
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- This repository contains relevant samples and data related to the ELF Malware Analysis 101 articles☆47Updated 3 years ago
- The report of a supervised classifier to detect malware in TLS traffic☆21Updated 5 years ago
- ☆17Updated 5 years ago
- ☆16Updated last year
- My conference presentations and Materials for them.☆32Updated 2 years ago
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆115Updated 5 months ago
- Windows (ShadowMove) Socket Duplication☆85Updated 5 years ago
- Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.☆74Updated 4 years ago