A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Python 11,404 2,526 Updated May 22, 2024

qilingframework / qiling

A True Instrumentable Binary Emulation Framework

Python 5,206 747 Updated Nov 25, 2024

mandiant / capa

The FLARE team's open-source tool to identify capabilities in executable files.

Python 4,941 564 Updated Dec 12, 2024

sensity-ai / dot

The Deepfake Offensive Toolkit

Python 4,164 418 Updated Jun 14, 2024

JonathanSalwan / ROPgadget

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC, MIPS, RISC-V 64, a…

Python 3,973 557 Updated Sep 30, 2024

secretsquirrel / SigThief

Stealing Signatures and Making One Invalid Signature at a Time

Python 2,133 462 Updated Aug 11, 2021

piccolomo / plotext

plotting on terminal

Python 1,798 85 Updated Sep 24, 2024

MaximeVandegar / Papers-in-100-Lines-of-Code

Implementation of papers in 100 lines of code.

Python 1,270 142 Updated Dec 2, 2024

mrphrazer / reverser_ai

Provides automated reverse engineering assistance through the use of local large language models (LLMs) on consumer hardware.

Python 844 52 Updated Jun 21, 2024

m417z / winbindex

An index of Windows binaries, including download links for executables such as exe, dll and sys files

Python 607 62 Updated Dec 12, 2024

cea-sec / Sibyl

A Miasm2 based function divination.

Python 531 55 Updated Jun 9, 2020

janoglezcampos / DeathSleep

A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.

Python 501 72 Updated Aug 1, 2022

mrphrazer / msynth

Code deobfuscation framework to simplify Mixed Boolean-Arithmetic (MBA) expressions

Python 287 27 Updated Nov 26, 2024

p0dalirius / pdbdownload

A Python script to download PDB files associated with a Portable Executable (PE)

Python 117 11 Updated Jul 15, 2024

Nessphoro / sublimeassembly

Provides actually decent code highlighting for x86-64 assembly in Sublime Text

Python 106 26 Updated Dec 1, 2022

csvl / SEMA

SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create representative signatures based on System Call Dependency graph (…

Python 100 21 Updated Nov 26, 2024

0x534a / dynmx

Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!

Python 82 7 Updated Jun 28, 2023

Malwation / sentello

Sentello is python script that simulates the anti-evasion and anti-analysis techniques used by malware.

Python 72 11 Updated Mar 7, 2021

packing-box / bintropy

Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes

Python 43 3 Updated Dec 1, 2024

CodeIntelligenceTesting / dream

The DREAM decompiler

Python 39 4 Updated Apr 27, 2022

packing-box / dataset-packed-pe

Forked from chesvectain/PackingData

Dataset of packed PE samples

Python 29 6 Updated Jul 13, 2024

Python 2 Updated Aug 5, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

DanyDollaro DanyDollaro

Block or report DanyDollaro

Lists (1)

🚀 My stack

Stars

python / mypy

lukas-blecher / LaTeX-OCR

ytisf / theZoo