Python Malware

Open-source Python projects categorized as Malware
Edit details
Topics: Python Security malware-analysis malware-research Cybersecurity
Free Django app performance insights with Scout Monitoring
Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in settings.py is all you need to start monitoring your apps. Sign up for our free tier today.
www.scoutapm.com
featured

Top 23 Python Malware Projects

  • hosts

    🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

    • Project mention: Manifest V2 phase-out begins | news.ycombinator.com | 2024-05-31

    Well at least the techie crowd can still use /etc/hosts (or the equivs on Mac/Win) which, if frequently-enough (weekly, biweekly, even monthly is enough) updated with the https://github.com/StevenBlack/hosts , seems to "block" ads sufficiently well (no in-page DOM node removals of course, just network-unreachable image/script/iframe/popup URLs).

  • wifiphisher

    The Rogue Access Point Framework

  • Scout Monitoring

    Free Django app performance insights with Scout Monitoring. Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in settings.py is all you need to start monitoring your apps. Sign up for our free tier today.

    Scout Monitoring logo

  • theZoo

    A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

    • Project mention: TheZoo a.k.a. Malware DB | news.ycombinator.com | 2023-08-18

  • volatility

    An advanced memory forensics framework

  • pyWhat

    🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

  • maltrail

    Malicious traffic detection system

    • Project mention: Maltrail: Malicious traffic detection system | /r/selfhosted | 2023-07-05

    I just wanted to tell you about Maltrail (https://github.com/stamparm/maltrail/).

  • qiling

    A True Instrumentable Binary Emulation Framework

    • Project mention: Qiling: A True Instrumentable Binary Emulation Framework | news.ycombinator.com | 2024-04-01

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • flare-floss

    FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

  • malwoverview

    Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.

  • volatility3

    Volatility 3.0 development

  • APT_REPORT

    Interesting APT Report Collection And Some Special IOC

  • CAPEv2

    Malware Configuration And Payload Extraction

  • yarGen

    yarGen is a generator for YARA rules

  • ThePhish

    ThePhish: an automated phishing email analysis tool

  • drakvuf-sandbox

    DRAKVUF Sandbox - automated hypervisor-level malware analysis system

  • intelmq

    IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

  • empyrean

    Easy to use and open-source stealer that's super effective

  • Luna-Grabber

    The best discord token grabber made in python

    • Project mention: EMERGENCY~!!!! Have been Doxxed | /r/pchelp | 2023-07-05

    I believe the program is something called Luna Grabber which has the ability to know if it is being used on a VM or not. However, there isn't much data on how to actually remove it from the computer. https://github.com/Smug246/Luna-Grabber

  • opensquat

    The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains.

    • Project mention: Have I Been Squatted? | news.ycombinator.com | 2023-11-27

    A different solution that runs locally is opensquat.

    https://github.com/atenreiro/opensquat

  • packj

    Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chain

    • Project mention: Rust Without Crates.io | news.ycombinator.com | 2023-11-14

    Creator of Packj [1] here. How do you envision sandboxing/security policies will be specified? Per-lib policies when you've hundreds of dependencies will become overwhelming. Having built an eBPF-based sandbox [2], I anticipate that accuracy will be another challenge here: too restrictive will block functionality, too permissive defeats the purpose.

    1. https://github.com/ossillate-inc/packj flags malicious/risky NPM/PyPI/RubyGems/Rust/Maven/PHP packages by carrying out static+dynamic+metadata analysis.

  • Python-Rootkit

    Python Remote Administration Tool (RAT) to gain meterpreter session

  • misp-galaxy

    Clusters and elements to attach to MISP events or attributes (like threat actors)

    • Project mention: MISP galaxy – cybersecurity and other related knowledge base | news.ycombinator.com | 2024-05-20

  • MalConfScan

    Volatility plugin for extracts configuration data of known malware

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python Malware related posts

  • Qiling: A True Instrumentable Binary Emulation Framework

    1 project | news.ycombinator.com | 1 Apr 2024

  • Does PiHole block porn?

    2 projects | /r/pihole | 6 Dec 2023

  • Steven Black DNS blocklist blocked gstatic.com

    2 projects | news.ycombinator.com | 6 Dec 2023

  • Big things are happening with RaspAP's Ad Blocking 🛑 Users will soon have more blocklist sources to choose from

    2 projects | /r/RaspAP | 8 Oct 2023

  • TheZoo a.k.a. Malware DB

    1 project | news.ycombinator.com | 18 Aug 2023

  • I installed Firefox + uBlock Origin like everyone suggested in my previous post, but this pop-up still appears, now with a 5 sec timer.

    1 project | /r/Piracy | 16 Aug 2023

  • “We have nothing to do with ads ” (2021)

    1 project | news.ycombinator.com | 26 Jul 2023
  • A note from our sponsor - SaaSHub
    www.saashub.com | 1 Jun 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source Malware projects in Python? This list will help you:

Project Stars
1 hosts 25,686
2 wifiphisher 12,782
3 theZoo 10,820
4 volatility 6,981
5 pyWhat 6,396
6 maltrail 5,821
7 qiling 4,885
8 flare-floss 3,057
9 malwoverview 2,748
10 volatility3 2,275
11 APT_REPORT 2,212
12 CAPEv2 1,723
13 yarGen 1,472
14 ThePhish 1,046
15 drakvuf-sandbox 991
16 intelmq 941
17 empyrean 953
18 Luna-Grabber 775
19 opensquat 657
20 packj 621
21 Python-Rootkit 554
22 misp-galaxy 503
23 MalConfScan 473

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com