2015-05-08 20:08:28 -04:00
|
|
|
# Awesome Malware Analysis
|
|
|
|
|
|
|
|
A curated list of awesome malware analysis tools and resources. Inspired by
|
|
|
|
[awesome-python](https://github.com/vinta/awesome-python) and
|
|
|
|
[awesome-php](https://github.com/ziadoz/awesome-php).
|
|
|
|
|
|
|
|
- [Awesome Malware Analysis](#awesome-malware-analysis)
|
2015-05-08 23:40:28 -04:00
|
|
|
- [Malware Collection](#malware-collection)
|
|
|
|
- [Anonymizers](#anonymizers)
|
|
|
|
- [Honeypots](#honeypots)
|
|
|
|
- [Malware Corpora](#malware-corpora)
|
2015-05-09 00:28:10 -04:00
|
|
|
- [Detection and Classification](#detection-and-classification)
|
2015-05-09 00:35:17 -04:00
|
|
|
- [Online Scanners and Sandboxes](#online-scanners-and-sandboxes)
|
2015-05-09 00:31:31 -04:00
|
|
|
- [Miscellaneous](#miscellaneous)
|
2015-05-08 20:08:28 -04:00
|
|
|
- [Resources](#resources)
|
|
|
|
- [Books](#books)
|
|
|
|
- [Twitter](#twitter)
|
2015-05-08 23:51:11 -04:00
|
|
|
- [Other](#other)
|
2015-05-08 20:08:28 -04:00
|
|
|
- [Related Awesome Lists](#related-awesome-lists)
|
|
|
|
- [Contributing](#contributing)
|
|
|
|
|
|
|
|
---
|
|
|
|
|
2015-05-08 23:40:28 -04:00
|
|
|
## Malware Collection
|
2015-05-08 20:08:28 -04:00
|
|
|
|
2015-05-08 23:40:28 -04:00
|
|
|
### Anonymizers
|
|
|
|
|
|
|
|
*Web traffic anonymizers for analysts.*
|
|
|
|
|
2015-05-09 00:23:12 -04:00
|
|
|
* [Anonymouse.org](http://anonymouse.org/) - A free, web based anonymizer.
|
|
|
|
* [OpenVPN](https://openvpn.net/) - VPN software and hosting solutions.
|
|
|
|
* [Privoxy](http://www.privoxy.org/) - An open source proxy server with some
|
|
|
|
privacy features.
|
2015-05-08 23:40:28 -04:00
|
|
|
* [Tor](https://www.torproject.org/) - The Onion Router, for browsing the web
|
|
|
|
without leaving traces of the client IP.
|
2015-05-08 23:51:11 -04:00
|
|
|
|
|
|
|
### Honeypots
|
|
|
|
|
2015-05-09 00:24:53 -04:00
|
|
|
*Trap and collect your own samples.*
|
|
|
|
|
2015-05-08 23:51:11 -04:00
|
|
|
### Malware Corpora
|
|
|
|
|
2015-05-09 00:24:53 -04:00
|
|
|
*Malware samples collected for analysis.*
|
|
|
|
|
2015-05-08 23:51:11 -04:00
|
|
|
* [Contagio](http://contagiodump.blogspot.com/) - A collection of recent
|
|
|
|
malware samples and analyses.
|
|
|
|
|
2015-05-09 00:28:10 -04:00
|
|
|
## Detection and Classification
|
|
|
|
|
|
|
|
*Antivirus and other malware identification tools*
|
|
|
|
|
|
|
|
* [ClamAV](http://www.clamav.net/index.html) - Open source antivirus engine.
|
|
|
|
* [YARA](https://plusvic.github.io/yara/) - Pattern matching tool for
|
|
|
|
analysts.
|
|
|
|
|
2015-05-09 00:35:17 -04:00
|
|
|
## Online Scanners and Sandboxes
|
|
|
|
|
|
|
|
* [VirusTotal](https://www.virustotal.com/) - Free online analysis of malware
|
|
|
|
samples and URLs
|
|
|
|
* [Jotti]() - Free online multi-AV scanner.
|
|
|
|
* [Malwr]() - Free analysis with an online Cuckoo Sandbox instance.
|
|
|
|
|
2015-05-09 00:31:31 -04:00
|
|
|
## Miscellaneous
|
|
|
|
|
|
|
|
* [REMnux](https://remnux.org/) - Linux distribution and docker images for
|
|
|
|
malware reverse engineering and analysis.
|
|
|
|
|
2015-05-08 23:51:11 -04:00
|
|
|
# Resources
|
|
|
|
|
|
|
|
## Books
|
|
|
|
|
|
|
|
## Twitter
|
|
|
|
|
|
|
|
## Other
|
|
|
|
|
|
|
|
# Related Awesome Lists
|
|
|
|
|
|
|
|
* [Android Security](https://github.com/ashishb/android-security-awesome)
|
|
|
|
* [Pentesting](https://github.com/enaqx/awesome-pentest)
|
|
|
|
* [Security](https://github.com/sbilly/awesome-security)
|
|
|
|
|
|
|
|
# [Contributing](CONTRIBUTING.md)
|
|
|
|
|
|
|
|
Pull requests and issues with suggestions are welcome!
|