Mystique
Infection marker detector
A tool that helps discover infection markers used by malware to mark their territory on endpoints.
Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malicious sample and automatically generates a list of mutexes that could be used to as “vaccines” against the sample.
80 stars
9 watching
11 forks
Language: Python
last commit: about 7 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 muellerberndt/mythril | Detects security vulnerabilities in smart contracts written in EVM bytecode. | 54 |
 mitrecnd/malchive | A collection of reusable scripts and tools for analyzing malicious software | 75 |
 marcosd4h/memhunter | Automated endpoint sensor tool to detect memory-resident malware without requiring memory dumps | 375 |
 hegusung/avsignseek | A tool to help identify the location of antivirus signatures in binary payloads | 312 |
 ivicanikolicsg/maian | Automated tool for detecting bugs in smart contracts on the Ethereum blockchain | 556 |
 vernamlab/medusa | Automated attack synthesis tool for discovering vulnerabilities in CPU architecture and cryptographic protocols | 18 |
 stvemillertime/conventionengine | Detects and identifies suspicious PDB paths in malware files using Yara rules. | 37 |
 cylance/pypackerdetect | An executable detection tool using PE parsing and machine learning signatures to identify packed samples. | 29 |
 mrphrazer/obfuscation_detection | Automatically detects obfuscated code and other complex code constructs in binaries to aid reverse engineering. | 575 |
 mzweilin/ipv6-attack-detector | Tools to detect and analyze link-local IPv6 attacks | 39 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,234 |
 mayachitra-inc/malex | A curated dataset and feature extraction method for malware detection using image-based machine learning classification. | 39 |
 mhaggis/hunt-detect-prevent | A collection of resources and tools for detecting and preventing malicious activity on Windows systems. | 162 |
| cylance/introductiontomachinelearningforsecuritypros | A collection of examples and code snippets teaching machine learning concepts to security professionals through hands-on Python projects | 150 |
 malicialab/avclass | A tool to label and categorize malware samples based on AV engine reports | 464 |