Viper Logo

Viper

0
Free
Visit Website

Viper is a binary analysis and management framework that provides a solution to easily organize and analyze malware and exploit samples, as well as scripts. It offers a terminal interface to store, search, and analyze arbitrary files, and a framework to create plugins. It is often referred to as a Metasploit for malware researchers. Viper is released under the BSD 3-Clause license and is copyrighted by Claudio Guarnieri. The source code is available on GitHub, where development efforts and contributions are coordinated. The framework provides various features, including installation, module dependencies, usage, concepts, projects, sessions, commands, and modules. It also offers a web interface, API, and user management, making it a comprehensive tool for malware researchers.

FEATURES

ALTERNATIVES

Bindings for the Yara library from VirusTotal with support for Yara v4.2 and various features like rule compilation and scanning.

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

A collection of YARA rules for public use, built from intelligence profiles and file work.

Tools for working with Android .dex and Java .class files, including dex-reader/writer, d2j-dex2jar, and smali/baksmali.

A web-based manager for Yara rules, allowing for storage, editing, and management of Yara rules.

Python 3 tool for parsing Yara rules with ongoing development.

Collection of Python scripts for automating tasks and enhancing IDA Pro functionality

A tool that reveals invisible links within JavaScript files

PINNED