Displaying 1 to 12 from 12 results

APKiD - Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

  •    YARA

APKiD gives you information about how an APK was made. It identifies many compilers, packers, obfuscators, and other weird stuff. It's PEiD for Android. You can also run APKiD with Docker! Of course, this requires that you have git and Docker installed.

binaryalert - BinaryAlert: Serverless, Real-time & Retroactive Malware Detection

  •    Python

BinaryAlert is an open-source serverless AWS pipeline where any file uploaded to an S3 bucket is immediately scanned with a configurable set of YARA rules. An alert will fire as soon as any match is found, giving an incident response team the ability to quickly contain the threat before it spreads.

dagda - a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

  •    Python

Dagda is a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities. In order to fulfill its mission, first the known vulnerabilities as CVEs (Common Vulnerabilities and Exposures), BIDs (Bugtraq IDs), RHSAs (Red Hat Security Advisories) and RHBAs (Red Hat Bug Advisories), and the known exploits from Offensive Security database are imported into a MongoDB to facilitate the search of these vulnerabilities and exploits when your analysis are in progress.




EmoCheck - Emotet detection tool for Windows OS

  •    C++

Emotet detection tool for Windows OS. Please download from the Releases page.

awesome-yara - A curated list of awesome YARA rules, tools, and people.

  •    

A curated list of awesome YARA rules, tools, and resources. Inspired by awesome-python and awesome-php. YARA is an ancronym for: YARA: Another Recursive Ancronym, or Yet Another Ridiculous Acronym. Pick your choice.

yara - Malice Yara Plugin

  •    YARA

This repository contains a Dockerfile of the Yara malice plugin malice/yara. This will output to stdout and POST to malice results API webhook endpoint.

Rat-Hunter - detect trojans by easy way 🛡️

  •    PHP

Rat hunter is project to detect Trojans , this project now supports 10 different trojans and i'm working to add more & i will add option to scan obfuscated Trojans , if you want me add new Trojan send it to k4hawk@gmail.com i've made this project for two reasons so you can use it to scan suspected files or you can read the source code to learn how it been made.


volatility-browserhooks - Volatility Framework plugin to detect various types of hooks as performed by banking Trojans

  •    Python

Volatility-browserhooks is a Volatility Framework plugin to detect various types of hooks as performed by recent banking Trojans. Move browserhooks.py to volatility/plugins/malware in the Volatilty Framework path.

Behavior-Based-Malware-Detection-System-for-Android - android app for malware detection

  •    Java

This is an android app for malware detection based on anomaly using dynamic analysis. Capitalize on earlier approaches for dynamic analysis of application behavior as a means for detecting malware in the Android platform. The detector is embedded in a overall framework for collection of traces from an unlimited number of real users based on crowdsourcing. Our framework has been demonstrated by analyzing the data collected in the central server using two types of data sets: those from arti cial malware created for test purposes, and those from real malware found in the wild. The implementation consists of two main programs: client and server.

kathe - A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.

  •    Javascript

If you click the HTTP 200 code, it will open a new tab for you to the successful response that generated the graph. I found this sometimes comes in handy. For what kathe is, how it works and why I bothered building it, I kindly refer you to My slides for Bsides Cymru 2019.






We have large collection of open source products. Follow the tags from Tag Cloud >>


Open source products are scattered around the web. Please provide information about the open source projects you own / you use. Add Projects.