bluepill
Malware analysis framework
An open-source framework to analyze and study malware behavior while evading detection by anti-analysis techniques.
BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)
121 stars
9 watching
22 forks
Language: C++
last commit: almost 3 years ago
Linked from 1 awesome list
debuggermalwaremalware-analysismalware-researchreverse-engineering
rshipp/awesome-malware-analysisRelated projects:
| Repository | Description | Stars |
|---|---|---|
 rieck/malheur | A tool for automatically analyzing malware behavior and identifying patterns and classes. | 368 |
 diogo-fernan/malsub | A Python framework that provides an API interface to multiple online services for analyzing malware and threat intelligence | 368 |
 trustedsec/pplfaultdumpbof | Tools for analyzing PPLFault-related malware behavior on Windows 10 | 133 |
 cristianzsh/freki | A platform for analyzing malware and performing reverse engineering on binary files | 422 |
 uqcyber/coldpress | Automates malware analysis workflow by extracting features and indicators of compromise from malicious files using various tools and libraries. | 16 |
 p4t12ick/ypsilon | An automated testing environment for security use cases using real malware and various tools | 165 |
 airbnb/binaryalert | Real-time malware detection and alert system for AWS S3 files | 1,409 |
 tencent/habomalhunter | Automates malware analysis on Linux systems to extract and analyze static and dynamic features | 732 |
 cyb3rmx/qu1cksc0pe | A comprehensive tool for analyzing suspicious files and detecting malware characteristics. | 1,320 |
 spiderlabs/malware-analysis | A collection of tools and scripts for analyzing malware | 244 |
 rew-sploit/rew-sploit | Analyzes and dissects malware and obfuscated code from various attack frameworks like Metasploit and Cobalt Strike | 139 |
 fortinet/ips-bph-framework | An automation framework for analyzing malware in virtual machines, using scripts and plugins to perform analysis tasks. | 29 |
 weisong-ucr/mab-malware | An open-source reinforcement learning framework to generate adversarial examples for malware classification models. | 40 |
 mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,873 |
 idiom/pftriage | Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators. | 77 |