aa-tools
Malware analyzer
A collection of tools and scripts for analyzing malware, reverse engineering malware, and decrypting encrypted data
Artifact analysis tools by JPCERT/CC Analysis Center
455 stars
55 watching
90 forks
Language: Python
last commit: 5 months ago malwarepythonsecurity
Related projects:
| Repository | Description | Stars |
|---|---|---|
| jpcertcc/malconfscan | Tools to extract configuration data from known malware samples in memory images. | 485 |
 cyb3rmx/qu1cksc0pe | A comprehensive tool for analyzing suspicious files and detecting malware characteristics. | 1,320 |
| jpcertcc/toolanalysisresultsheet | An HTML-based tool for analyzing and visualizing log data from Windows execution of malicious tools to detect lateral movement. | 345 |
 joxeankoret/pyew | A command-line tool for analyzing malware and disassembling binary files | 383 |
 mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,873 |
 uqcyber/coldpress | Automates malware analysis workflow by extracting features and indicators of compromise from malicious files using various tools and libraries. | 16 |
 rieck/malheur | A tool for automatically analyzing malware behavior and identifying patterns and classes. | 368 |
 telekom-security/malware_analysis | An analysis repository providing scripts, signatures, and IOCs for detecting and analyzing malware. | 110 |
 zhengmin1989/droidanalytics | An Android malware analysis system designed to collect and analyze malware signatures using machine learning techniques. | 29 |
 cristianzsh/freki | A platform for analyzing malware and performing reverse engineering on binary files | 422 |
 mitrecnd/malchive | A collection of reusable scripts and tools for analyzing malicious software | 75 |
 lprat/static_file_analysis | Analyzes files to detect malware and extract embedded content | 49 |
 uppusaikiran/generic-parser | Analyzes malware files to detect suspicious behavior by extracting meta information and features. | 1 |
 secrary/makin | An analysis tool that reveals anti-debugging and anti-VM techniques used by malware samples. | 732 |
 rjzak/decompressingyara | A tool for decompressing malware samples and running Yara rules against them. | 7 |