mirror of
https://github.com/rshipp/awesome-malware-analysis.git
synced 2024-06-30 21:41:19 +00:00
Compare commits
9 Commits
7f8a7d6694
...
2b787f6928
Author | SHA1 | Date | |
---|---|---|---|
|
2b787f6928 | ||
|
45b56e26f0 | ||
|
a3f07a0452 | ||
|
d9be38e887 | ||
|
19554e7df1 | ||
|
16e814114d | ||
|
3a278790eb | ||
|
9dbc8c084f | ||
|
1037a22b1a |
|
@ -87,8 +87,6 @@ View Chinese translation: [恶意软件分析大合集.md](恶意软件分析大
|
||||||
rapid identification and actionable context for malware investigations.
|
rapid identification and actionable context for malware investigations.
|
||||||
* [Malshare](https://malshare.com) - Large repository of malware actively
|
* [Malshare](https://malshare.com) - Large repository of malware actively
|
||||||
scrapped from malicious sites.
|
scrapped from malicious sites.
|
||||||
* [Open Malware Project](http://openmalware.org/) - Sample information and
|
|
||||||
downloads. Formerly Offensive Computing.
|
|
||||||
* [Ragpicker](https://github.com/robbyFux/Ragpicker) - Plugin based malware
|
* [Ragpicker](https://github.com/robbyFux/Ragpicker) - Plugin based malware
|
||||||
crawler with pre-analysis and reporting functionalities
|
crawler with pre-analysis and reporting functionalities
|
||||||
* [theZoo](https://github.com/ytisf/theZoo) - Live malware samples for
|
* [theZoo](https://github.com/ytisf/theZoo) - Live malware samples for
|
||||||
|
@ -256,7 +254,7 @@ executables.
|
||||||
* [Nauz File Detector(NFD)](https://github.com/horsicq/Nauz-File-Detector) - Linker/Compiler/Tool detector for Windows, Linux and MacOS.
|
* [Nauz File Detector(NFD)](https://github.com/horsicq/Nauz-File-Detector) - Linker/Compiler/Tool detector for Windows, Linux and MacOS.
|
||||||
* [nsrllookup](https://github.com/rjhansen/nsrllookup) - A tool for looking
|
* [nsrllookup](https://github.com/rjhansen/nsrllookup) - A tool for looking
|
||||||
up hashes in NIST's National Software Reference Library database.
|
up hashes in NIST's National Software Reference Library database.
|
||||||
* [packerid](http://handlers.sans.org/jclausing/packerid.py) - A cross-platform
|
* [packerid](https://github.com/sooshie/packerid) - A cross-platform
|
||||||
Python alternative to PEiD.
|
Python alternative to PEiD.
|
||||||
* [PE-bear](https://hshrzd.wordpress.com/pe-bear/) - Reversing tool for PE
|
* [PE-bear](https://hshrzd.wordpress.com/pe-bear/) - Reversing tool for PE
|
||||||
files.
|
files.
|
||||||
|
@ -620,6 +618,8 @@ the [browser malware](#browser-malware) section.*
|
||||||
analysis.
|
analysis.
|
||||||
* [PyREBox](https://github.com/Cisco-Talos/pyrebox) - Python scriptable reverse
|
* [PyREBox](https://github.com/Cisco-Talos/pyrebox) - Python scriptable reverse
|
||||||
engineering sandbox by the Talos team at Cisco.
|
engineering sandbox by the Talos team at Cisco.
|
||||||
|
* [Qiling Framework](https://www.qiling.io/) - Cross platform emulation and sanboxing
|
||||||
|
framework with instruments for binary analysis.
|
||||||
* [QKD](https://github.com/ispras/qemu/releases/) - QEMU with embedded WinDbg
|
* [QKD](https://github.com/ispras/qemu/releases/) - QEMU with embedded WinDbg
|
||||||
server for stealth debugging.
|
server for stealth debugging.
|
||||||
* [Radare2](http://www.radare.org/r/) - Reverse engineering framework, with
|
* [Radare2](http://www.radare.org/r/) - Reverse engineering framework, with
|
||||||
|
@ -726,6 +726,8 @@ the [browser malware](#browser-malware) section.*
|
||||||
code integrity and write support.
|
code integrity and write support.
|
||||||
* [Muninn](https://github.com/ytisf/muninn) - A script to automate portions
|
* [Muninn](https://github.com/ytisf/muninn) - A script to automate portions
|
||||||
of analysis using Volatility, and create a readable report.
|
of analysis using Volatility, and create a readable report.
|
||||||
|
[Orochi](https://github.com/LDO-CERT/orochi) - Orochi is an open source framework for
|
||||||
|
collaborative forensic memory dump analysis.
|
||||||
* [Rekall](http://www.rekall-forensic.com/) - Memory analysis framework,
|
* [Rekall](http://www.rekall-forensic.com/) - Memory analysis framework,
|
||||||
forked from Volatility in 2013.
|
forked from Volatility in 2013.
|
||||||
* [TotalRecall](https://github.com/sketchymoose/TotalRecall) - Script based
|
* [TotalRecall](https://github.com/sketchymoose/TotalRecall) - Script based
|
||||||
|
|
Loading…
Reference in New Issue
Block a user