trendmicro / tlsh

Related projects: ⓘ

• ssdeep-project / ssdeep
  Fuzzy hashing API and fuzzy hashing tool
  ☆661Updated 3 years ago
• googleprojectzero / functionsimsearch
  Some C++ example code to demonstrate how to perform code similarity searches using SimHashing.
  ☆559Updated 4 years ago
• malicialab / avclass
  AVClass malware labeling tool
  ☆458Updated 2 weeks ago
• tklengyel / drakvuf
  DRAKVUF Black-box Binary Analysis
  ☆1,044Updated this week
• JusticeRage / Manalyze
  A static analyzer for PE executables.
  ☆1,007Updated 8 months ago
• VirusTotal / yara-python
  The Python interface for YARA
  ☆648Updated 3 months ago
• guelfoweb / peframe
  PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
  ☆605Updated 2 years ago
• vivisect / vivisect
  ☆928Updated 3 weeks ago
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆743Updated last year
• corkami / pocs
  Proof of Concepts (PE, PDF...)
  ☆1,436Updated last year
• HynekPetrak / malware-jail
  Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js
  ☆458Updated last year
• vertexproject / synapse
  Synapse Central Intelligence System
  ☆350Updated this week
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆479Updated 4 months ago
• google / rekall
  Rekall Memory Forensic Framework
  ☆1,916Updated 3 years ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆519Updated this week
• Cisco-Talos / pyrebox
  Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
  ☆1,650Updated 7 months ago
• BayshoreNetworks / yextend
  Yara integrated software to handle archive file data.
  ☆296Updated 2 years ago
• cmu-sei / pharos
  Automated static analysis tools for binary programs
  ☆1,533Updated 2 weeks ago
• buffer / thug
  Python low-interaction honeyclient
  ☆980Updated 2 weeks ago
• rieck / malheur
  A Tool for Automatic Analysis of Malware Behavior
  ☆365Updated 5 years ago
• carbonblack / binee
  Binee: binary emulation environment
  ☆500Updated last year
• libvmi / libvmi
  The official home of the LibVMI project is at https://github.com/libvmi/libvmi.
  ☆666Updated this week
• vstinner / hachoir
  Hachoir is a Python library to view and edit a binary stream field by field
  ☆605Updated 2 months ago
• decalage2 / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆1,044Updated 2 months ago
• decaf-project / DECAF
  DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the D…
  ☆799Updated 2 months ago
• viper-framework / viper
  Binary analysis and management framework
  ☆1,537Updated last year
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,032Updated last week
• googleprojectzero / halfempty
  A fast, parallel test case minimization tool.
  ☆941Updated 3 years ago
• erocarrera / pefile
  pefile is a Python module to read and work with PE (Portable Executable) files
  ☆1,855Updated 3 weeks ago
• panda-re / panda
  Platform for Architecture-Neutral Dynamic Analysis
  ☆2,467Updated last week