Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Malware

Malware can take various forms, including viruses, worms, Trojans, ransomware, spyware, and more. Its primary goal is to compromise the integrity, confidentiality, or availability of information, often for financial gain, espionage, or other malicious purposes.

https://github.com/zhuagenborn/goasm-rat

💻 A Windows console remote administration tool written in Go & Intel x86 Assembly. It supports remote shell and screenshot.

cybersecurity malware network remote-administration-tool socket windows

Last synced: 08 Nov 2024

https://github.com/cvar1984/sussyfinder

Single file php webshell scanner to detect potentially malicious backdoor based on token and hash with web interface and VirusTotal integration

antivirus backdoor forensics hacktoberfest malware malware-analysis php webshells

Last synced: 15 Nov 2024

https://github.com/zhuagenborn/windows-dll-injector

💉 A Windows dynamic-link library injection tool written in C++20. It can inject a dynamic-link library into a running process by its window title or create a new process with an injection.

cpp20 cybersecurity dll-inection malware windows

Last synced: 08 Nov 2024

https://github.com/nyan-x-cat/csharp-loader

Download a .NET payload and run it on memory

backdoor dropper loader malware payload stub

Last synced: 08 Nov 2024

https://github.com/machine1337/fudshell

An efficent Script To Generate FUD Persistent Reverse Shell For Red Teaming. Don't Upload Generated Stub On Virustotal

antivirus-evasion evasion fud fud-rat hacking kali-linux machine1337 malware python rat redteaming reverse-shell windows windows-rat

Last synced: 10 Nov 2024

https://github.com/nyan-x-cat/njrat-0.7d-stub-csharp

njRAT C# Stub - Fixed For PowerShell

backdoor client malware njrat powershell rat stub

Last synced: 08 Nov 2024

https://github.com/nyan-x-cat/malwareshell

Create a powershell malware loader to run C#.cs code on runtime

backdoor downloader loader malware payload poweshell ps1

Last synced: 08 Nov 2024

https://github.com/qeeqbox/rhino

Agile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors

agile analysis api behavior customizable linux macos malware react-interface sandbox virtualbox vms webinterface windows

Last synced: 15 Nov 2024

https://github.com/brosck/frosty

「🧊」Ring 3 Rootkit for Windows 10

dll frosty malware ring3 rootkit service windows

Last synced: 13 Nov 2024

https://github.com/darkarp/malwaredevseries

Malware develoment in Rust

malware reverse-shell rust twitch youtube

Last synced: 28 Oct 2024

https://github.com/nyan-x-cat/js-downloader

JS Jscript - download file from url then run it

backdoor download downloader js jscript malware run

Last synced: 08 Nov 2024

https://github.com/nyan-x-cat/limelogger

Simple C# Keylogger (Keyboard Layout)

backdoor keylogger language lime logger malware multi payload

Last synced: 08 Nov 2024

https://github.com/rpgeeganage/file-less-ransomware-demo

Demonstrate about file-less malware approach using JavaScript

file-less javascript malware ransom-worm ransomware ransomware-resources

Last synced: 27 Oct 2024

https://github.com/jpcertcc/lazarus-research

Lazarus analysis tools and research report

malware security

Last synced: 05 Nov 2024

https://github.com/rickmark/mojo_thor

Research about malware that infects the EFI and SMC of Apple MacBooks.

apple efi malware rootkit

Last synced: 14 Oct 2024

https://github.com/guitmz/go-liora

Probably the first binary (PE/ELF) infector ever created in GoLang.

elf go golang linux malware virus vx

Last synced: 09 Nov 2024

https://github.com/imp0rtp3/Yobi

Yara Based Detection Engine for web browsers

add-on antivirus dfir firefox javascript malware scanner yara

Last synced: 13 Nov 2024

https://github.com/krisnova/kush

Kubernetes Unhinged Shell 😎

kubernetes malware

Last synced: 08 Nov 2024

https://github.com/scrapbird/sarlacc

SMTP server / sinkhole for collecting spam

malware sinkhole smtp-server spam

Last synced: 17 Nov 2024

https://github.com/mucoze/Umay

IoT Malware Similarity Analysis Platform

django infosec iot malware malware-analysis reverse-engineering static-analysis

Last synced: 04 Aug 2024

https://github.com/eset/wslink-vm-analyzer

WslinkVMAnalyzer is a tool to facilitate analysis of code protected by a virtual machine featured in Wslink malware

deobfuscation malware miasm reverse-engineering virtual-machine

Last synced: 09 Nov 2024

https://github.com/billythegoat356/cerberus

A complete Grabber, sending data to a TCP server that you have to host and stocking all in a database.

discord discord-webhook grabber host malware poc python stealer tcp token-grabber virus webhook

Last synced: 10 Nov 2024

https://github.com/te-k/apkcli

CLI tool to analyze APKs

android malware malware-analysis reverse-engineering

Last synced: 07 Nov 2024

https://github.com/whokilleddb/injection-for-dummies

A collection of PoCs for different injection techniques on Windows!

dll-injection hacking injection injection-attacks malware red-team shellcode shellcode-injection windows

Last synced: 08 Nov 2024

https://github.com/ruzickap/malware-cryptominer-container

Container image with malware and crypto miner for testing purposes

container crypto cryptominer dockerfile eicar image malware test xmrig

Last synced: 13 Oct 2024

https://github.com/cristianzsh/csharp-keylogger

:keyboard: A keylogger written in C# + Send by email

csharp email keylogger malware security security-tools send-email windows

Last synced: 17 Nov 2024

https://github.com/guitmz/midrashim

PT_NOTE to PT_LOAD x64 ELF infector written in Assembly

asm assembly elf infector linux malware virus

Last synced: 09 Nov 2024

https://github.com/checkpointsw/anti-debug-db

Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of various anti-debug tricks, their implementation, and recommendations of how to mitigate the each trick.

anti-debug malware research

Last synced: 12 Nov 2024

https://github.com/elastic/die-python

Native Python3 bindings for @horsicq's Detect-It-Easy

detect-it-easy malware malware-analysis malware-research python python3

Last synced: 07 Oct 2024

https://github.com/PL-V/Firefox-WebInject

Firefox webInjector capable of injecting codes into webpages using a mitmproxy.

hacking-tool hooking malware malware-development red-teaming

Last synced: 04 Nov 2024

https://github.com/fmind/euphony

Harmonious Unification of Cacophonous Anti-Virus Vendor Labels for Android Malware

android antivirus clustering label malware

Last synced: 06 Nov 2024

https://github.com/gdatasoftwareag/vaas

Verdict-as-a-Service SDKs: Analyze files for malicious content

it-security malware malware-analysis malware-detection security

Last synced: 11 Nov 2024

https://github.com/GDATASoftwareAG/vaas

Verdict-as-a-Service SDKs: Analyze files for malicious content

it-security malware malware-analysis malware-detection security

Last synced: 04 Aug 2024

https://github.com/aress31/sci

Framework designed to automate the process of assembly code injection (trojanising) within Android applications.

android assembly code-injection framework malware mobile-security pentesting python reverse-engineering smali spyware trojan

Last synced: 28 Oct 2024

https://github.com/mandiant/apooxml

Generate YARA rules for OOXML documents.

detection malware ooxml security yara

Last synced: 10 Nov 2024

https://github.com/nyan-x-cat/vbs-shell

using VBS to download and install a powershell malware

backdoor downloader loader malware powershell vbs

Last synced: 08 Nov 2024

https://github.com/marcusminus/orthrus-blocklist

List to block ads, trackers & malwares. Plus 200.000 unique domains and about 4 MB in size.

adblock ads blacklist blocklist domain domains filter filters hosts hostsfile internet malware pi-hole pihole privacy security tracker tracking

Last synced: 10 Oct 2024

https://github.com/nyan-x-cat/bot-killer

Simple example of how to remove all malwares from disk and registry.

backdoor bot bot-killer botkiller killer malware persistence remover

Last synced: 08 Nov 2024

https://github.com/chainski/pandaloader

A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.

bypass-antivirus crypter edr-bypass etw-bypass etw-evasion evasion malware obfuscation payload-generator pe-loader persistence powershell redteam shellcode shellcode-encoder shellcode-loader xor-encryption

Last synced: 13 Oct 2024

https://github.com/checkpointsw/cyber-research

General purpose repository for miscellaneous scripts, pcaps and malware IOCs that we share with the info-sec research community

malware research vulnerability

Last synced: 12 Nov 2024

https://github.com/secana/penet-analyzer

Analyzers for Portable Executable anomalies and other malware behavior.

malware malware-analysis malware-detection penet portable-executable

Last synced: 11 Nov 2024

https://github.com/agddos/agddos

High-performance website testing tool written in Golang.

ddos ddos-attacks funding git github golang golang-application golang-examples malware

Last synced: 12 Oct 2024

https://github.com/nyan-x-cat/lime-dropper

Download payload to disk and install it to startup then melt.

backdoor downloader drop dropper malware

Last synced: 08 Nov 2024

https://github.com/juanico10/pihole_list

The project Pihole_list is a project in which we block and protect the entire network through its own hardware.

adblock adguard adguardhome blocklist dns docker docker-compose malware pihole pihole-blocklists safelist whitelist

Last synced: 10 Oct 2024

https://github.com/nyan-x-cat/autoit-powershell-loader

Download and loader .NET payload

backdoor loader malware payload powershell stub

Last synced: 08 Nov 2024

https://github.com/abathelt/Resources

Learning resources, blogs, news, SQL, PowerShell, SQL, Linux, Revers Engineering, Malware

linux malware security sql

Last synced: 13 Aug 2024

https://github.com/jpcertcc/cobaltstrike-config

Repository for archiving Cobalt Strike configuration

malware security

Last synced: 05 Nov 2024

https://github.com/guitmz/nim-cephei

Probably the first ELF binary infector ever created in Nim.

elf malware nim virus

Last synced: 09 Nov 2024

https://github.com/loneicewolf/lojax

LOJAX ROOTKIT (UEFI) +PDF Included[x]

bootkit lojax malware rootkit uefi uefi-rootkit

Last synced: 06 Nov 2024

https://github.com/loneicewolf/LOJAX

LOJAX ROOTKIT (UEFI) +PDF Included[x]

bootkit lojax malware rootkit uefi uefi-rootkit

Last synced: 18 Nov 2024

https://github.com/guitmz/gocave

Finding code caves in ELF files with GoLang

elf go golang malware

Last synced: 09 Nov 2024

https://github.com/fr0gger/Yara-Unprotect

This repository regroups the Yara Rules for the Unprotect Project

malware unprotectproject yara

Last synced: 13 Nov 2024

https://github.com/adrianherrera/malware-s2e

Code for my blog post on using S2E for malware analysis

malware s2e symbolic-execution

Last synced: 08 Nov 2024

https://github.com/brosck/mbroverwrite

「💽」MBR Overwrite malware for linux

assembly c harddisk hardware malware mbr overwrite virus

Last synced: 13 Nov 2024

https://github.com/ldpreload/medusa

LD_PRELOAD Rootkit

backdoor ldpreload linux malware rootkit

Last synced: 07 Nov 2024

https://github.com/machine1337/anonsurf

An Effiecent Tool To Change Tor IP's in Seconds,change mac address and clean all logs

anonsurf anonymous darkweb hacking ipchanger kali-linux logscleaner machine1337 malware tor

Last synced: 10 Nov 2024

https://github.com/hjunker/ProcessBouncer

ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows to effectively block most of current ransomware that is out there.

administrator malware powershell-script protection ransomware

Last synced: 13 Aug 2024

https://github.com/jpcertcc/quasarrat-analysis

QuasarRAT analysis tools and research report

malware python3 security

Last synced: 05 Nov 2024

https://github.com/aaron-akhtar/jbot

Essentially, the base of a Botnet, Any Botnet.

botnet cnc jbot malware server tcp tool

Last synced: 11 Oct 2024

https://github.com/elliotwutingfeng/threatfox-ioc-ips

Machine-readable .txt IP blocklist from ThreatFox by Abuse.ch, updated every hour.

abuse aiohttp blocklist c2 feed firewalla ioc malware osint pfblockerng python spamhaus threatfox

Last synced: 11 Nov 2024

https://github.com/carlospolop/malwarepoc

Windows Malware Probe of Concept

malware

Last synced: 28 Oct 2024

https://github.com/souhardya/chimeraldr

Multipurpose malware framework

botnet c2 implant malware red-team updater vkontakte windows

Last synced: 09 Oct 2024

https://github.com/IQTLabs/AuraBorealisApp

Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data

flask malware pypi registry security security-audit security-tools static-analysis static-code-analysis

Last synced: 04 Aug 2024

https://github.com/elliotwutingfeng/spamdexingsites

URL feed for blocking spamdexing websites. Let's banish them to the rubbish bin where they belong!

adblock blocklist content-farm dnsbl machine-learning malvertising malware osint pfblockerng pihole spam ublacklist

Last synced: 11 Nov 2024

https://github.com/a3r0id/mass-scanning-tools

Various scripts for mass-scanning engagements of world-facing services.

bot botnet census cnc malware malware-research mass scan scanner-web threat-hunting threat-intelligence threatintel zmap

Last synced: 06 Nov 2024

https://github.com/jstrosch/graph-maldoc-similar-images

A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster visually similar images together. The script computes the Average Hash of each extracted image, then graphs the images if they meet the similarity threshold. The script can be used as a technique for visually identifying malware campaigns involving documents. To use the script, supply a directory containing OOXML files. If LibreOffice is in your PATH you can optionally convert non-OOXML Word, Excel, PowerPoint and Rich Text File documents to OOXML. The script outputs DOT files that can be exported as images using Graphviz. If Graphviz is in your PATH you can also export to an SVG (preferred) or PNG image.

image maldoc malware

Last synced: 31 Oct 2024

https://github.com/cpscript/usb-ransom

USB Ransomware, will encrypt SOME files and steal some, you can change what it steals... once its done, just unplug it from the PC u plugged it in. (some source code)

bad flashdrive free hackers hacks malware notgood ransomware source source-code spyware trojan usb usb-hacks virus

Last synced: 17 Nov 2024

https://github.com/machine1337/batobfuscate

A simple script to obfuscate batch(bat) code easily

crypter encryption evasion exploitation freecrypter fud hacking malware obfuscation python rat windows

Last synced: 10 Nov 2024

https://github.com/linuxthor/rkspotter

Rootkit spotter - experimental Linux rootkit finder LKM

linux-kernel linux-kernel-module malware malware-detection rootkit rootkit-hunter

Last synced: 16 Nov 2024

https://github.com/palahsu/malware-smog

There are many powerful viruses 💀 that can damage your PC in a matter of seconds. Batch file virus to gain full access to another computer. This repo is a collection of fun little viruses that pack a mean punch!

batch-file batch-script batchfile batchfiles computer malware malware-analysis malware-detection malware-research pc trojan virus viruses virustotal

Last synced: 10 Nov 2024

https://github.com/brosck/l1lkiller

「⚠️」Performing a BYOVD on the truesight.sys driver

byovd development hacking malware offensivesecurity redteam security windows

Last synced: 05 Nov 2024

https://github.com/elliotwutingfeng/usom-blocklists

Malicious URLs and IP Addresses compiled by USOM (Computer Emergency Response Team of Turkey), updated once a day.

domains firewalla ioc ipv4 malware osint pfblockerng pfsense pihole tr-cert turkey turkiye ublock-origin usom

Last synced: 11 Nov 2024