Python malware-research

Open-source Python projects categorized as malware-research

Top 23 Python malware-research Projects

malware-research
  • theZoo

    A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

    Project mention: Cyber Scarecrow, making your computer look 'scary' to malware | news.ycombinator.com | 2024-06-18
  • CodeRabbit

    CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

    CodeRabbit logo
  • pyWhat

    🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

    Project mention: pyWhat VS binwalk - a user suggested alternative | libhunt.com/r/pyWhat | 2024-07-19
  • CAPEv2

    Malware Configuration And Payload Extraction

  • yarGen

    yarGen is a generator for YARA rules

  • drakvuf-sandbox

    DRAKVUF Sandbox - automated hypervisor-level malware analysis system

  • malboxes

    Builds malware analysis Windows VMs so that you don't have to.

  • ThreatIngestor

    Extract and aggregate threat intelligence.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
  • iocextract

    Defanged Indicator of Compromise (IOC) Extractor.

  • karton

    Distributed malware processing framework based on Python, Redis and S3.

  • mwdb-core

    Malware repository component for samples & static configuration with REST API interface.

  • Fake-Sandbox-Artifacts

    This script allows you to create various artifacts on a bare-metal Windows computer in an attempt to trick malwares that looks for VM or analysis tools

    Project mention: Cyber Scarecrow, making your computer look 'scary' to malware | news.ycombinator.com | 2024-06-18

    I’m sure it’s closed source for the eventual plans to monetize it, but what’s the real difference to something like https://github.com/NavyTitanium/Fake-Sandbox-Artifacts and why can’t you at least name yourselves?

    Not many software promises to fend off attackers, asks for an email address before download, and creates a bunch of processes using a closed source dll the existence of which can easily be checked.

    Then again, not many malware targeting consumers at random check for security software. You are more likely to see a malware stop working if you fake the amount of ram and cpu and your network driver vendor than if you have CrowdStrike, etc. running.

  • malware-ioc

    This repository contains indicators of compromise (IOCs) of our various investigations. (by prodaft)

  • pyhidra

    Pyhidra is a Python library that provides direct access to the Ghidra API within a native CPython interpreter using jpype.

  • pyc2bytecode

    A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

  • peid

    Python implementation of the Packed Executable iDentifier (PEiD)

  • teleRAT

    Telegram RAT written in Python

  • Configuration_extractors

    Configuration Extractors for Malware

  • docker-packing-box

    Docker image gathering packers and tools for making datasets of packed executables and training machine learning models for packing detection

  • machofile

    machofile is a module to parse Mach-O binary files

  • bintropy

    Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

  • IDAPython

    IDA Python scripts

  • pypackerdetect

    Packing detection tool for PE files

  • ace-firefist

    Attack chain emulator. Write recipes for initial access easily

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Python malware-research discussion

Log in or Post with

Python malware-research related posts

  • Cyber Scarecrow, making your computer look 'scary' to malware

    7 projects | news.ycombinator.com | 18 Jun 2024
  • PTI-257 Group Indicators of Compromise (IOCs) - PTI-257 consists of former Wizard Spider actors who are publicly known for the various malware variants they use (Ryuk, Trickbot, and Conti, among others)

    1 project | /r/blueteamsec | 14 Sep 2023
  • TheZoo a.k.a. Malware DB

    1 project | news.ycombinator.com | 18 Aug 2023
  • Tools to demonstrate malware or ransomware infected PC

    1 project | /r/cybersecurity | 20 Jul 2023
  • Worms for practice

    1 project | /r/hacking | 28 Jun 2023
  • Python script which uses Ghidra doesn't recognize imports

    1 project | /r/ghidra | 11 Jun 2023
  • Decryptor for PlutoCrypt Ransomware

    1 project | /r/blueteamsec | 26 May 2023
  • A note from our sponsor - CodeRabbit
    coderabbit.ai | 10 Dec 2024
    Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR. Learn more →

Index

What are some of the best open-source malware-research projects in Python? This list will help you:

Project Stars
1 theZoo 11,386
2 pyWhat 6,581
3 CAPEv2 2,035
4 yarGen 1,559
5 drakvuf-sandbox 1,072
6 malboxes 1,030
7 ThreatIngestor 834
8 iocextract 513
9 karton 395
10 mwdb-core 328
11 Fake-Sandbox-Artifacts 250
12 malware-ioc 209
13 pyhidra 187
14 pyc2bytecode 133
15 peid 130
16 teleRAT 109
17 Configuration_extractors 54
18 docker-packing-box 49
19 machofile 48
20 bintropy 43
21 IDAPython 28
22 pypackerdetect 21
23 ace-firefist 19

Sponsored
CodeRabbit: AI Code Reviews for Developers
Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.
coderabbit.ai

Did you konow that Python is
the 2nd most popular programming language
based on number of metions?