Various snippets created during malware analysis
☆466Oct 3, 2025Updated 7 months ago
Alternatives and similar repositories for malware_analysis
Users that are interested in malware_analysis are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Small tool for disassembling shellcode (using objdump)☆149Jun 19, 2022Updated 3 years ago
- Demos of various injection techniques found in malware☆790Feb 15, 2022Updated 4 years ago
- ☆68Jun 21, 2017Updated 8 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆448Oct 26, 2022Updated 3 years ago
- ☆92Oct 28, 2016Updated 9 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆268Jun 15, 2021Updated 4 years ago
- Malware Configuration And Payload Extraction☆760Nov 22, 2024Updated last year
- Scripts for communication with Bunitu Trojan C&Cs☆19Oct 29, 2015Updated 10 years ago
- Automated Exploit generation with WinDBG☆192Oct 18, 2016Updated 9 years ago
- FAME Automates Malware Evaluation☆937May 3, 2026Updated 2 weeks ago
- Python script to decode common encoded PowerShell scripts☆216Jun 13, 2018Updated 7 years ago
- A static analyzer for PE executables.☆1,125Mar 11, 2026Updated 2 months ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,267Mar 26, 2026Updated last month
- Persistent IAT hooking application - based on bearparser☆266Sep 18, 2022Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- PyAna - Analyzing the Windows shellcode☆247Feb 16, 2016Updated 10 years ago
- ChimeraPE (a PE injector type - alternative to: RunPE, ReflectiveLoader, etc) - a template for manual loading of EXE, loading imports pay…☆231Mar 22, 2023Updated 3 years ago
- Useful Scripts for helping in reverse engeenering☆182Sep 25, 2020Updated 5 years ago
- Artifact analysis tools by JPCERT/CC Analysis Center☆463Aug 14, 2025Updated 9 months ago
- inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extr…☆297Sep 30, 2023Updated 2 years ago
- IFL - Interactive Functions List (plugin for IDA Pro)☆492Feb 27, 2026Updated 2 months ago
- Analysis PE file or Shellcode☆50Jul 28, 2016Updated 9 years ago
- Cosa Nostra, a FOSS graph based malware clusterization toolkit.☆232Jan 18, 2024Updated 2 years ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Jun 8, 2017Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Unpack MIME attachments from a file and check them against virustotal.com☆44Mar 11, 2016Updated 10 years ago
- Portable Executable parsing library (from PE-bear)☆657Oct 4, 2025Updated 7 months ago
- capstone based disassembler for extracting to binnavi☆230Jun 8, 2016Updated 9 years ago
- Demos of various (also non standard) persistence methods used by malware☆225Mar 5, 2023Updated 3 years ago
- makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]☆742Mar 17, 2019Updated 7 years ago
- SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]☆411Apr 21, 2020Updated 6 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,120Jul 10, 2024Updated last year
- A collection of scripts to initialize a windows VM to run all the malwares!☆107Apr 3, 2020Updated 6 years ago
- Builds malware analysis Windows VMs so that you don't have to.☆1,045Aug 23, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆197Sep 12, 2017Updated 8 years ago
- ☆113Jun 12, 2017Updated 8 years ago
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,433Nov 16, 2023Updated 2 years ago
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,108Nov 3, 2017Updated 8 years ago
- My solutions for HackSys Extreme Vulnerable Driver☆12Apr 22, 2018Updated 8 years ago
- Converts a DLL into EXE☆816Jul 23, 2023Updated 2 years ago
- POC for IAT Parsing Payloads☆48Jan 1, 2017Updated 9 years ago