peframe
Malware analyzer
Analyzes Portable Executable malware and malicious MS Office documents for various suspicious features
PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
610 stars
53 watching
139 forks
Language: YARA
last commit: over 2 years ago
Linked from 2 awesome lists
rshipp/awesome-malware-analysis
packing-box/awesome-executable-packingRelated projects:
| Repository | Description | Stars |
|---|---|---|
 justicerage/manalyze | Analyzes PE files for security vulnerabilities and suspicious behavior | 1,018 |
 cyb3rmx/qu1cksc0pe | A comprehensive tool for analyzing suspicious files and detecting malware characteristics. | 1,320 |
 struppigel/portex | A Java library for static analysis of Portable Executable files with focus on malware detection and PE malformation robustness | 496 |
 telekom-security/malware_analysis | An analysis repository providing scripts, signatures, and IOCs for detecting and analyzing malware. | 110 |
 kevoreilly/capev2 | A tool to extract configuration and payload from malware by analyzing its behavior in a sandboxed environment. | 2,011 |
 malwareinfosec/ekfiddle | An extension for the Fiddler web debugger to analyze malicious web traffic and provide features such as regex pattern matching, YARA support, and advanced filtering. | 636 |
 hiddenillusion/analyzepe | Analyzes PE files by combining data from various tools to generate a centralized report. | 204 |
 phra/pezor | A tool for obfuscating and packing executable files to evade antivirus detection and security measures | 1,856 |
 dragon-dreamer/binary-valentine | An executable file analyzer tool that detects security, configuration, optimization, system, and format issues in Windows executables | 16 |
 diogo-fernan/malsub | A Python framework that provides an API interface to multiple online services for analyzing malware and threat intelligence | 368 |
 trustedsec/pplfaultdumpbof | Tools for analyzing PPLFault-related malware behavior on Windows 10 | 133 |
 mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,873 |
 tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,155 |
 joxeankoret/pyew | A command-line tool for analyzing malware and disassembling binary files | 383 |
 uppusaikiran/generic-parser | Analyzes malware files to detect suspicious behavior by extracting meta information and features. | 1 |