SaaSHub helps you find the best software and product alternatives Learn more →
Top 23 malware-detection Open-Source Projects
-
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
Not sure if this fits your description but worth a shot in the dark.
-
Wazuh
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
There is currently no feature for excluding specific SCA rules however this feature has been requested here and would be added to the roadmap for future releases.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
-
-
APKiD
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
-
hollows_hunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
-
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
dagda
a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities
Project mention: General Docker Troubleshooting, Best Practices & Where to Go From Here | dev.to | 2024-01-19Dagda. A tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in Docker images/containers.
-
-
-
-
-
FCL
FCL (Fileless Command Lines) - Known command lines of fileless malicious executions (by chenerlich)
-
TweetFeed
TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.
-
-
-
-
pandora
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results (by pandora-analysis)
-
malware-ioc
This repository contains indicators of compromise (IOCs) of our various investigations. (by prodaft)
Project mention: PTI-257 Group Indicators of Compromise (IOCs) - PTI-257 consists of former Wizard Spider actors who are publicly known for the various malware variants they use (Ryuk, Trickbot, and Conti, among others) | /r/blueteamsec | 2023-09-14 -
Project mention: YAMA: Yet Another Memory Analyzer for malware detection | /r/blueteamsec | 2023-08-14
-
Stuxnet-Source
stuxnet Source & Binaries. ONLY FOR ACADEMICAL RESEARCH AND EDUCATIONAL PURPOSES! Includes: Source files, Binaries, PLC Samples,Fanny Added in another repo.
-
Project mention: Shinigami: A dynamic unpacking tool - Shinigami is an experimental tool designed to detect and unpack malware implants that are injected via process hollowing or generic packer routines. | /r/blueteamsec | 2023-04-23
-
Crawlector
Crawlector is a threat hunting framework designed for scanning websites for malicious objects.
Project mention: Crawlector Version 2.0 has been released. This is a milestone release. | /r/netsec | 2023-09-21 -
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
malware-detection related posts
- PersistenceSniper v1.13.0 and in-depth Wiki by @last0x00
- Crawlector Version 2.0 has been released. This is a milestone release.
- PTI-257 Group Indicators of Compromise (IOCs) - PTI-257 consists of former Wizard Spider actors who are publicly known for the various malware variants they use (Ryuk, Trickbot, and Conti, among others)
- YAMA: Yet Another Memory Analyzer for malware detection
- Datasets for Malware Identification
- Decryptor for PlutoCrypt Ransomware
- Ransomware with known Registry Persistence
-
A note from our sponsor - SaaSHub
www.saashub.com | 28 Mar 2024
Index
What are some of the best open-source malware-detection projects? This list will help you:
Project | Stars | |
---|---|---|
1 | MalwareSourceCode | 15,003 |
2 | Wazuh | 8,876 |
3 | awesome-yara | 3,193 |
4 | APKLab | 2,324 |
5 | APKiD | 1,860 |
6 | hollows_hunter | 1,838 |
7 | PersistenceSniper | 1,764 |
8 | dagda | 1,099 |
9 | reversinglabs-yara-rules | 678 |
10 | EmoCheck | 673 |
11 | XAPKDetector | 566 |
12 | Nauz-File-Detector | 484 |
13 | FCL | 457 |
14 | TweetFeed | 419 |
15 | Malware-Sample-Sources | 381 |
16 | MCAntiMalware | 272 |
17 | LibreAV | 240 |
18 | pandora | 232 |
19 | malware-ioc | 195 |
20 | YAMA | 162 |
21 | Stuxnet-Source | 133 |
22 | Shinigami | 121 |
23 | Crawlector | 120 |