Coder Social home page Coder Social logo

kairos-t / malware-analysis-toolkit Goto Github PK

View Code? Open in Web Editor NEW
11.0 3.0 3.0 36 KB

[IN THE WORKS] Python script designed to provide comprehensive analysis of malware samples, combining static and dynamic analysis techniques to analyse the behaviour and characteristics of analysed malware. Utilises PEfile library and PyREBox (VM sandbox)

License: GNU General Public License v3.0

Python 55.89% JavaScript 44.11%
malware malware-analysis pefile python pyrebox

malware-analysis-toolkit's Introduction

Malware-Analysis-Toolkit

The Malware Analysis Tool is a Python-based tool that performs static and dynamic analysis on Windows PE files. It leverages the capabilities of pefile and frida to extract information about the PE file structure, perform dynamic analysis using hooking techniques, and extract printable strings from the file.

Features

  • Static analysis: Extracts information about the PE file structure, including image base, entry point, number of sections, and imported functions.
  • Dynamic analysis: Uses frida to perform dynamic analysis by hooking function calls, memory access, and API calls, and traces execution flow using Frida's Stalker module.
  • String extraction: Extracts printable strings from the PE file.

Usage

  1. Clone the repository:
git clone https://github.com/Kairos-T/Malware-Analysis-Toolkit
  1. Install the required packages:
pip install -r requirements.txt
  1. Run the malware analysis tool:
python malware_analysis_tool.py <path_to_pe_file>

Replace <path_to_pe_file> with the path to the PE file you want to analyse.

Contributing

Contributions are welcome! If you have any suggestions or encounter any bugs, please open an issue or submit a pull request.

Acknowledgements

malware-analysis-toolkit's People

Contributors

kairos-t avatar totodile-liam avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar

Forkers

totodile-liam totodile-julian mohammedjangeer2023

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.