evilsocket / ergo-pe-avLinks
🧠🦠An artificial neural network and API to detect Windows malware, based on Ergo and LIEF.
☆178Updated 6 years ago
Alternatives and similar repositories for ergo-pe-av
Users that are interested in ergo-pe-av are comparing it to the libraries listed below
Sorting:
- snake - a malware storage zoo☆216Updated last year
- Generating YARA rules based on binary code☆212Updated 3 years ago
- Automatic Yara Rule Generation☆332Updated 9 years ago
- DrSemu - Sandboxed Malware Detection and Classification Tool Based on Dynamic Behavior☆273Updated 5 years ago
- A malware analysis and classification tool.☆190Updated 3 years ago
- BASS - BASS Automated Signature Synthesizer☆175Updated 6 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Security ML models encoded as Yara rules☆213Updated last year
- ☆98Updated 4 years ago
- Pattern Extractor for Obfuscated Code☆299Updated 3 years ago
- 16,432 Free Yara rules created by☆384Updated 6 years ago
- Cuckoo Sandbox Dockerfile☆329Updated 5 years ago
- Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.☆206Updated 11 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Malware Configuration And Payload Extraction☆760Updated 7 months ago
- An open source script to perform malware static analysis on Portable Executable☆314Updated 2 years ago
- Parse YARA rules and operate over them more easily.☆191Updated 4 months ago
- This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map t…☆110Updated 5 years ago
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆236Updated 2 years ago
- For all these times you're asking yourself "what is this panel again?"☆255Updated 2 years ago
- A Tool for Automatic Analysis of Malware Behavior☆372Updated 6 years ago
- The Multiplatform Linux Sandbox☆262Updated 3 years ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆81Updated 9 months ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆470Updated 4 years ago
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆231Updated last year
- Miscellaneous Malware RE☆196Updated 3 years ago
- The pattern matching swiss knife☆138Updated 5 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆202Updated 3 years ago
- IOC from articles, tweets for archives☆313Updated last year
- Minimal, consistent Python API for building integrations with malware sandboxes.☆139Updated last year