Multi-engine Linux malware scanner with five detection stages (MD5, HEX pattern, YARA, ClamAV, statistical), real-time inotify monitoring, quarantine, and multi-channel alerting
☆1,379Mar 18, 2026Updated this week
Alternatives and similar repositories for linux-malware-detect
Users that are interested in linux-malware-detect are comparing it to the libraries listed below
Sorting:
- Brute force attack detection with exponential-decay pressure scoring, 42 service rules, 8 firewall backends, IPv4/IPv6, and repeat-offend…☆26Updated this week
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,397Jan 28, 2026Updated last month
- Detect potentially malicious PHP files☆1,476Oct 20, 2023Updated 2 years ago
- iptables/netfilter firewall for Linux servers with stateful filtering, trust system, ipset block lists, SYN flood protection, VNET per-IP…☆101Updated this week
- A fully featured malware scanner for Linux desktops and servers.☆69May 18, 2022Updated 3 years ago
- Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time…☆399May 20, 2016Updated 9 years ago
- Loki - Simple IOC and YARA Scanner☆3,733Jan 12, 2026Updated 2 months ago
- Malcom - Malware Communications Analyzer☆1,165Nov 29, 2017Updated 8 years ago
- Malicious traffic detection system☆8,329Updated this week
- Repository of yara rules☆4,730Apr 17, 2024Updated last year
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,027Mar 14, 2026Updated last week
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,928May 3, 2022Updated 3 years ago
- FAME Automates Malware Evaluation☆931Dec 16, 2025Updated 3 months ago
- Defund the Police.☆13,523Jun 7, 2024Updated last year
- Apache Real Time Logs Analyzer System☆125May 22, 2023Updated 2 years ago
- Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration☆262Oct 18, 2017Updated 8 years ago
- Binary analysis and management framework☆1,556Jun 7, 2023Updated 2 years ago
- Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js☆476Jun 16, 2023Updated 2 years ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,239Aug 7, 2025Updated 7 months ago
- The pattern matching swiss knife☆9,490Feb 10, 2026Updated last month
- YARA signature and IOC database for my scanners and tools☆2,884Mar 9, 2026Updated last week
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,070Updated this week
- Easy automated vulnerability scanning, reporting and analysis☆709Jan 10, 2020Updated 6 years ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆6,171Mar 14, 2026Updated last week
- The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.☆1,044Jan 6, 2022Updated 4 years ago
- Shell Detector – is a application that helps you find and identify php/cgi(perl)/asp/aspx shells. Shell Detector has a “web shells” signa…☆408Dec 31, 2019Updated 6 years ago
- Indicators of Compromises (IOC) of our various investigations☆1,933Mar 10, 2026Updated last week
- SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]☆410Apr 21, 2020Updated 5 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,106Apr 16, 2021Updated 4 years ago
- WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…☆9,513Feb 16, 2026Updated last month
- Automated Linux evil maid attack☆436Dec 22, 2015Updated 10 years ago
- The Multiplatform Linux Sandbox☆266Jan 3, 2022Updated 4 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆107Mar 4, 2021Updated 5 years ago
- Various malware, packer, crypter, etc. detection and analysis tools☆91Sep 13, 2015Updated 10 years ago
- A static analyzer for PE executables.☆1,112Mar 11, 2026Updated last week
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆556May 9, 2023Updated 2 years ago
- HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis an…☆748Apr 7, 2023Updated 2 years ago
- Python Decoders for Common Remote Access Trojans☆1,117Jul 16, 2024Updated last year
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆14,987Updated this week