A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.
Contagio Mobile is a collection of Android Fakebank samples and Tizi samples, providing researchers with valuable resources for analyzing and detecting socially engineered spyware on Android devices.
A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.
A multithreaded YARA scanner for incident response or malware zoos.
VMCloak is a tool for creating and preparing Virtual Machines for Cuckoo Sandbox.
Automate the process of writing YARA rules based on executable code within malware.
A dataset release policy for the Android Malware Genome Project, requiring authentication and justification for access to the dataset.
A tool for malware analysts to search through base64-encoded samples and generate yara rules.