Top 23 Malware Open-Source Projects

  • hosts

    🔒 Consolidating and extending hosts files from several well-curated sources. Optionally pick extensions for porn, social media, and other categories.

    Project mention: Manifest V2 phase-out begins | | 2024-05-31

    Well at least the techie crowd can still use /etc/hosts (or the equivs on Mac/Win) which, if frequently-enough (weekly, biweekly, even monthly is enough) updated with the , seems to "block" ads sufficiently well (no in-page DOM node removals of course, just network-unreachable image/script/iframe/popup URLs).

  • Scout Monitoring

    Free Django app performance insights with Scout Monitoring. Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in is all you need to start monitoring your apps. Sign up for our free tier today.

    Scout Monitoring logo
  • MalwareSourceCode

    Collection of malware source code for a variety of platforms in an array of different programming languages.

  • Awesome-Hacking-Resources

    A collection of hacking / penetration testing resources to make you better!

  • wifiphisher

    The Rogue Access Point Framework

  • theZoo

    A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

    Project mention: Cyber Scarecrow, making your computer look 'scary' to malware | | 2024-06-18
  • Reverse-Engineering-Tutorial

    A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

    Project mention: New embedded and Rust hacking tutorials added - For anyone that missed my last post. Kevin Thomas is my mentor. We are both working together to bring free and low cost resources to those who are looking to learn and don't have money for expensive bootcamps/certs. Please enjoy his free tutorials! | /r/ReverseEngineering | 2023-10-27
  • TheFatRat

    Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo
  • volatility

    An advanced memory forensics framework

  • pyWhat

    🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

    Project mention: pyWhat VS binwalk - a user suggested alternative | | 2024-07-19
  • maltrail

    Malicious traffic detection system

  • al-khaser

    Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

  • qiling

    A True Instrumentable Binary Emulation Framework

    Project mention: Qiling: A True Instrumentable Binary Emulation Framework | | 2024-04-01
  • dns-blocklists

    DNS-Blocklists: For a better internet - keep the internet clean!

    Project mention: Runs on your OpenWrt box: AdGuard Home is network-wide blocking ads and tracking | | 2024-02-06

    Hagezi blocklists are the current standard now:

    You could go for one of the Lite blocklists for the network wide, family friendly (non-breaking) list.

  • simplify

    Android virtual machine and deobfuscator

  • nginx-ultimate-bad-bot-blocker

    Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders

    Project mention: Nginx Bad Bot and User-Agent Blocker | | 2024-03-07
  • flare-floss

    FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

  • pafish

    Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

    Project mention: Is there still a way to counter virtual machine detection by popular anti cheat? | /r/VFIO | 2023-12-05

    Pafish is what you asking for, but as u/ForceBlade wrote, you cannot win this game.

  • blocklist-ipsets

    ipsets dynamically updated with firehol's script

  • malwoverview

    Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.

  • block

    Let's make an annoyance free, better open internet, altogether!

  • volatility3

    Volatility 3.0 development


    Interesting APT Report Collection And Some Special IOC

  • EvilClippy

    A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Malware discussion

Log in or Post with

Malware related posts

  • pyWhat VS binwalk - a user suggested alternative

    2 projects | 19 Jul 2024
  • Cyber Scarecrow, making your computer look 'scary' to malware

    7 projects | | 18 Jun 2024
  • SEMA Evolution: Redefining Malware Analysis Toolchain Architecture

    1 project | | 29 May 2024
  • Hell's Gate [pdf]

    1 project | | 9 Apr 2024
  • Qiling: A True Instrumentable Binary Emulation Framework

    1 project | | 1 Apr 2024
  • Ledger's NPM account has been hacked

    8 projects | | 14 Dec 2023
  • Does PiHole block porn?

    2 projects | /r/pihole | 6 Dec 2023
  • A note from our sponsor - Scout Monitoring | 22 Jul 2024
    Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in is all you need to start monitoring your apps. Sign up for our free tier today. Learn more →


What are some of the best open-source Malware projects? This list will help you:

Project Stars
1 hosts 26,173
2 MalwareSourceCode 15,412
3 Awesome-Hacking-Resources 14,979
4 wifiphisher 12,896
5 theZoo 10,944
6 Reverse-Engineering-Tutorial 10,395
7 TheFatRat 9,143
8 volatility 7,006
9 pyWhat 6,470
10 maltrail 5,955
11 al-khaser 5,680
12 qiling 4,963
13 dns-blocklists 4,948
14 simplify 4,367
15 nginx-ultimate-bad-bot-blocker 3,843
16 flare-floss 3,119
17 pafish 3,087
18 blocklist-ipsets 3,043
19 malwoverview 2,858
20 block 2,456
21 volatility3 2,396
22 APT_REPORT 2,285
23 EvilClippy 2,088

Free Django app performance insights with Scout Monitoring
Get Scout setup in minutes, and let us sweat the small stuff. A couple lines in is all you need to start monitoring your apps. Sign up for our free tier today.