A list of useful tools for Malware Analysis (will be updated regularly)
☆165Aug 5, 2025Updated 9 months ago
Alternatives and similar repositories for malware-tools
Users that are interested in malware-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- Rolling Timeline for Incident Recorder.☆14Dec 4, 2023Updated 2 years ago
- Basic Deobfuscator for SaintFuscator, Using CCFlow with this tool is recommended☆16Jun 4, 2021Updated 4 years ago
- Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…☆16Feb 25, 2025Updated last year
- ☆25Jul 23, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Plugin for x64Dbg adding Lua scripting.☆21May 3, 2019Updated 7 years ago
- A collaboration effort by the DFIR community to provide definitions (sometimes multiple) for common forensic terms!☆26Dec 1, 2022Updated 3 years ago
- paste string formatted byte data block into x64dbg easy.☆42Jan 2, 2021Updated 5 years ago
- Automatic updater plugin for x64dbg☆24Jul 5, 2025Updated 9 months ago
- ELF binary file format parser in C☆13Jul 17, 2021Updated 4 years ago
- Just load this .js module and it will start tracking all external calls by a JS-application☆47Dec 17, 2024Updated last year
- xLCB plugin for x64dbg☆20Oct 4, 2016Updated 9 years ago
- Develop macOS apps on Windows with seamless cross-platform tools.☆16Jun 5, 2025Updated 11 months ago
- ☆24Mar 12, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- CLI tools for forensic investigation of Windows artifacts☆352Jul 21, 2025Updated 9 months ago
- Conteúdo do treinamento/brainstorming Introdução a engenharia reversa no Windows feito com muito carinho por mim.☆17Oct 13, 2022Updated 3 years ago
- Screen recorder for x64dbg, for recording screen while debugging.☆11Jul 27, 2016Updated 9 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- Golang bindings for PE-sieve☆41Nov 11, 2023Updated 2 years ago
- ☆24Oct 30, 2024Updated last year
- xLEAPP - Merging of iLEAPP/RLEAPP/vLEAPP, ALEAPP, cLEAPP☆53Apr 27, 2026Updated last week
- Collection of fasmg code samples and small projects.☆12Jul 21, 2022Updated 3 years ago
- ☆17Feb 15, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆34Jan 9, 2025Updated last year
- ☆12Jan 18, 2026Updated 3 months ago
- Epic nuker for nuking terrain☆16Nov 21, 2025Updated 5 months ago
- Use Markdown content on your site by combining it with HTML! Implemented from scratch with 100% syntax support.☆18Apr 11, 2025Updated last year
- Client side mapart utility mod designed for 2b2t mapart enthusiasts!☆15Jan 10, 2026Updated 3 months ago
- Windows Forensics Environment Builder☆185Apr 7, 2026Updated 3 weeks ago
- A tool for fetching DFIR and other GitHub tools.☆27Aug 2, 2025Updated 9 months ago
- Slides of mine.☆12Apr 19, 2024Updated 2 years ago
- x86/x64 Ring 0/-2 System Freezer/Debugger☆120May 21, 2025Updated 11 months ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Parser fo macOS/iOS FSEvents Logs☆46May 6, 2024Updated last year
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- DateTime Library - a library written in assembler (for x86 and x64) which provides simple date and time conversion, manipulation and comp…☆17Apr 11, 2024Updated 2 years ago
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- A config file that's curated for DFIR examiners with shortcuts to common Windows artifacts and settings enabled that help make your life …☆40Jan 6, 2025Updated last year
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 5 months ago