C malware-analysis

Open-source C projects categorized as malware-analysis

Top 8 C malware-analysis Projects

malware-analysis
  • radare2

    UNIX-like reverse engineering framework and command-line toolset

  • InfluxDB

    Purpose built for real-time analytics at any scale. InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.

    InfluxDB logo
  • pafish

    Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

    Project mention: Is there still a way to counter virtual machine detection by popular anti cheat? | /r/VFIO | 2023-12-05

    Pafish is what you asking for, but as u/ForceBlade wrote, you cannot win this game.

  • HyperDbg

    State-of-the-art native debugging tools

    Project mention: Reverse Engineering DOS Software as If It Were 1990 | news.ycombinator.com | 2024-02-02

    https://hyperdbg.org and m1n1 (Apple Silicon) spring to mind as modern supervisor/hypervisor debuggers.

    There's nothing modern I'm aware of that lets you press a key combination to get into a hypervisor debug UI like softICE was known for, though. It's all shifted to host-and-target debugging. You'd use a "normal" debugger on one machine (lldb/gdb, WinDbg, IDA, etc.) and either supervised host-to-target connection (network-to-kernel/hypervisor on x86, OCD like JTAG/SWD/CoreSight on embedded) or emulation (for pretty much everything but device driver development).

  • hollows_hunter

    Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

  • dumpulator

    An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

  • mal_unpack

    Dynamic unpacker based on PE-sieve

  • xzre

    XZ backdoor reverse engineering

    Project mention: Deep Dive into XZ Utils Backdoor – Columbia Engineering Guest Lecture [video] | news.ycombinator.com | 2024-04-30

    Worth a watch. There's also this GitHub where there's reverse engineering going on: https://github.com/smx-smx/xzre

    We now know the answer to the question of "who would win?"

    1) A years-long nation-state-backed hacking effort to infiltrate a software project and compromise most servers in the Western world

    or

    2) A German's obsession with efficiency and precision in engineering

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • hem-hashes

    Hiew External Module (HEM) to calculate CRC-32, MD5, SHA-1, and SHA-256 hashes of a given file/block

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

C malware-analysis discussion

Log in or Post with

C malware-analysis related posts

  • Deep Dive into XZ Utils Backdoor – Columbia Engineering Guest Lecture [video]

    2 projects | news.ycombinator.com | 30 Apr 2024
  • Rileva hollow code injection in windows

    1 project | /r/SecurityIT | 7 Nov 2022
  • Is it possible a spyware can hide it's processes in task manager details and in services tab?

    2 projects | /r/cybersecurity | 21 Oct 2022
  • Get "File Version" from an exe file stored on Linux

    1 project | /r/linux4noobs | 9 Aug 2022
  • Hollows Hunter – Scans all running processes

    1 project | news.ycombinator.com | 30 Jan 2022
  • rabin2 for scraping ELF to JSON

    2 projects | /r/ELFLinking | 16 Oct 2021
  • A note from our sponsor - InfluxDB
    www.influxdata.com | 7 Sep 2024
    InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards. Learn more →

Index

What are some of the best open-source malware-analysis projects in C? This list will help you:

Project Stars
1 radare2 20,275
2 pafish 3,311
3 HyperDbg 2,827
4 hollows_hunter 1,985
5 dumpulator 708
6 mal_unpack 649
7 xzre 90
8 hem-hashes 36

Sponsored
Purpose built for real-time analytics at any scale.
InfluxDB Platform is powered by columnar analytics, optimized for cost-efficient storage, and built with open data standards.
www.influxdata.com

Did you konow that C is
the 7th most popular programming language
based on number of metions?