Manage all types of time series data in a single, purpose-built database. Run at any scale in any environment in the cloud, on-premises, or at the edge. Learn more →
Top 23 Python Malware Projects
🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.Project mention: Does PiHole block porn? | /r/pihole | 2023-12-06
Not by default but a blocklist can be found here https://github.com/StevenBlack/hosts
The Rogue Access Point FrameworkProject mention: I am looking for a shortcut to convert PICs like this to a working CSS code using the aid of AI, is it possible ? ( i am studying CyberSec, so i need temps like this from time to time, i am mediocre at programming tho) | /r/ChatGPT | 2023-04-09
dis but for multiple vendors .. as a project for this semester
Collect and Analyze Billions of Data Points in Real Time. Manage all types of time series data in a single, purpose-built database. Run at any scale in any environment in the cloud, on-premises, or at the edge.
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.Project mention: TheZoo a.k.a. Malware DB | news.ycombinator.com | 2023-08-18
An advanced memory forensics frameworkProject mention: What is the appropriate uncompressed kernel ELF to use with dwarf2json? [ 5.19.0-42-generic #43~22.04.1-Ubuntu ], in order to create generate a custom symbols table to conduct linux memory forensics on Ubuntu 22.04? | /r/computerforensics | 2023-05-28
I need this to create generate a custom symbols table (using dwarf2json), in order to run a memory dump acquired by Ubuntu 22.04, as Ubuntu 22.04 kernel does not work anymore with volatility 2 (Issue here: volatilityfoundation/volatility#828)
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
Malicious traffic detection systemProject mention: Maltrail: Malicious traffic detection system | /r/selfhosted | 2023-07-05
I just wanted to tell you about Maltrail (https://github.com/stamparm/maltrail/).
A True Instrumentable Binary Emulation Framework
Learn any GitHub repo in 59 seconds. Onboard AI learns any GitHub repo in minutes and lets you chat with it to locate functionality, understand different parts, and generate new code. Use it for free at www.getonboard.dev.
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.Project mention: Why is this de-compiled code showing a different value in memory sometimes? | /r/ghidra | 2023-03-06
Depending on how clever the developer was, this tool works well to find hidden strings: https://github.com/mandiant/flare-floss
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
Interesting APT Report Collection And Some Special IOCProject mention: APT_REPORT/WithSecure-Lazarus-No-Pineapple-Threat-Intelligence-Report-2023.pdf at master · blackorbird/APT_REPORT | /r/SecOpsDaily | 2023-02-06
Volatility 3.0 developmentProject mention: Volatility 3 2.4.1 - New Linux and Windows plugins | /r/blueteamsec | 2023-04-22
Malware Configuration And Payload Extraction
yarGen is a generator for YARA rules
ThePhish: an automated phishing email analysis toolProject mention: How do you deal with phising emails at your company? | /r/cybersecurity | 2023-05-14
DRAKVUF Sandbox - automated hypervisor-level malware analysis system
IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Easy to use and open-source stealer that's super effectiveProject mention: so uhh help? when i downloaded this, it says that there's "21 security vendors and no sandboxes flagged this file as malicious". is this safe to run? | /r/antivirus | 2023-03-11
here it is : https://www.virustotal.com/gui/file/80f39a11a179b4b0829192f0283f53b4170347f760deb4b40b346ac99bba4d87 and this is the thing im tryna download : https://github.com/addi00000/empyrean
The openSquat project is an open-source solution for detecting phishing domains and domain squatting. It searches for newly registered domains that impersonate legitimate domains on a daily basis.
The best discord token grabber made in pythonProject mention: EMERGENCY~!!!! Have been Doxxed | /r/pchelp | 2023-07-05
I believe the program is something called Luna Grabber which has the ability to know if it is being used on a VM or not. However, there isn't much data on how to actually remove it from the computer. https://github.com/Smug246/Luna-Grabber
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flagging malicious/vulnerable open-source dependencies ("weak links") in your software supply-chainProject mention: Rust Without Crates.io | news.ycombinator.com | 2023-11-14
Creator of Packj  here. How do you envision sandboxing/security policies will be specified? Per-lib policies when you've hundreds of dependencies will become overwhelming. Having built an eBPF-based sandbox , I anticipate that accuracy will be another challenge here: too restrictive will block functionality, too permissive defeats the purpose.
1. https://github.com/ossillate-inc/packj flags malicious/risky NPM/PyPI/RubyGems/Rust/Maven/PHP packages by carrying out static+dynamic+metadata analysis.
Python Remote Administration Tool (RAT) to gain meterpreter session
Volatility plugin for extracts configuration data of known malware
Clusters and elements to attach to MISP events or attributes (like threat actors)Project mention: Foreign Travel Risks | /r/cybersecurity | 2023-04-26
MISP Threat Actor Galaxy
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
Python Malware related posts
Does PiHole block porn?
2 projects | /r/pihole | 6 Dec 2023
Steven Black DNS blocklist blocked gstatic.com
2 projects | news.ycombinator.com | 6 Dec 2023
Big things are happening with RaspAP's Ad Blocking 🛑 Users will soon have more blocklist sources to choose from
2 projects | /r/RaspAP | 8 Oct 2023
TheZoo a.k.a. Malware DB
1 project | news.ycombinator.com | 18 Aug 2023
I installed Firefox + uBlock Origin like everyone suggested in my previous post, but this pop-up still appears, now with a 5 sec timer.
1 project | /r/Piracy | 16 Aug 2023
“We have nothing to do with ads ” (2021)
1 project | news.ycombinator.com | 26 Jul 2023
Tools to demonstrate malware or ransomware infected PC
1 project | /r/cybersecurity | 20 Jul 2023
A note from our sponsor - InfluxDB
www.influxdata.com | 10 Dec 2023
What are some of the best open-source Malware projects in Python? This list will help you: