Freki is a free and open-source malware analysis platform. Goals Facilitate malware analysis and reverse engineering; Provide an easy-to-use REST API for different projects; Easy deployment (via Docker); Allow the addition of new features by the community. Current features Hash extraction. VirusTotal API queries. Static analysis of PE files (headers, sections, imports, capabilities, andRead More
HiJackThis Fork is a free utility for Microsoft Windows that scans your computer for settings changed by adware, spyware, malware and other unwanted programs. HiJackThis Fork primarily detects hijacking methods rather than comparing items against a pre-built database. This allows it to detect new or previously unknown malware – but it also makes no distinctionRead More
Malware Mutation using Deep Reinforcement Learning and GANs The purpose of the tool is to use artificial intelligence to mutate a malware (PE32 only) sample to bypass AI powered classifiers while keeping its functionality intact. In the past, notable work has been done in this domain with researchers either looking at reinforcement learning or generativeRead More
Malware Source Code Collection !!! DISCLAIMER !!! We do not take any responsibility for any damage done by the code in this repository. Download, compile or run at your own risk Contents: This repository contains the source code for the following: .├── Acad├── Engines│ ├── BAT│ ├── Linux│ ├── VBS│ └── Win32├── Java├── Leaks│ ├──Read More
Saferwall is an open source malware analysis platform. It aims for the following goals: Provide a collaborative platform to share samples among malware researchers. Acts as a system expert, to help researchers generates an automated malware analysis report. Hunting platform to find new malwares. Quality ensurance for signature before releasing. Features Static analysis: Crypto hashes,Read More
In this malware, are used some techniques to try bypass the AVs, VMs, and Sandboxes, with only porpuse to learning more. I’m not responsible for your actions.Bypass Techniques Anti-DebuggerTo try bypass the Debuggers, I’m using the “IsDebuggerPresent()” of “Windows.h” librarie to checks if a debugger is running. Anti-VM / Anti-Sandbox / Anti-AV Enumerate Process FunctionRead More
Inhale is a malware analysis and classification tool that is capable of automating and scaling many static analysis operations.This is the beta release version, for testing purposes, feedback, and community development. BackgroundInhale started as a series of small scripts that I used when collecting and analyzing a large amount of malware from diverse sources. ThereRead More
Dr.Semu runs executables in an isolated environment, monitors the behavior of a process, and based on Dr.Semu rules created by you or the community, detects if the process is malicious or not. whoami: @_qaz_qazWith Dr.Semu you can create rules to detect malware based on dynamic behavior of a process. Isolation through redirectionEverything happens from theRead More
