zRapha / FAME
Framework for Adversarial Malware Evaluation.
☆32Updated last year
Related projects: ⓘ
- Defense from the 2020 Microsoft Evasion Competition☆16Updated 3 years ago
- Embed an executable as a PE resource, drops and launches it in runtime.☆54Updated 3 years ago
- Code for the paper "EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis"☆25Updated 11 months ago
- Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"☆16Updated 2 years ago
- ☆13Updated last year
- This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.☆38Updated last month
- Malware Bypass Research using Reinforcement Learning☆99Updated 4 months ago
- Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network☆25Updated 3 years ago
- This repository contains dynamic and static tools for IoT malware analysis☆19Updated 2 years ago
- Windows (ShadowMove) Socket Duplication☆77Updated 4 years ago
- Command line tool for launching attacks against Machine Learning Malware detectors.☆17Updated last year
- ☆22Updated last year
- MAB-Malware an open-source reinforcement learning framework to generate AEs for PE malware. We model this problem as a classic multi-arme…☆38Updated last year
- AVCLASS++: Yet Another Massive Malware Labeling Tool☆12Updated 4 years ago
- ☆56Updated last year
- 🔍 "2015 Microsoft Malware Classification Challenge" - Using machine learning to classify malware into different families based on Window…☆16Updated 7 months ago
- Dataset of packed ELF samples☆15Updated last year
- A curated resource list of adversarial attacks and defenses for Windows PE malware detection.☆66Updated 2 years ago
- Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.☆55Updated last year
- All in one - Malware + Analysis by Cylance☆10Updated 5 years ago
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- ☆13Updated 2 years ago
- ☆22Updated 3 months ago
- A Semantics-Enhanced Learnable Vulnerability Detector☆43Updated 2 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 3 years ago
- The malsource dataset☆10Updated 3 years ago
- ☆81Updated 2 years ago
- Recreating and reviewing the Windows persistence methods☆39Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆82Updated 2 weeks ago