Search Results for "anti-malware"
Sort By:
Showing 1120 open source projects for "anti-malware"
View related business solutions-
Try Google Cloud Risk-Free With $300 in CreditUse your credit across every product. Compute, storage, AI, analytics. When it runs out, 20+ products stay free. You only pay when you choose to.
-
Forever Free Full-Stack Observability | Grafana CloudBuilt on open standards like Prometheus and OpenTelemetry, Grafana Cloud includes Kubernetes Monitoring, Application Observability, Incident Response, plus the AI-powered Grafana Assistant. Get started with our generous free tier today.
-
1
Al-Khaser
Public malware techniques used in the wild: Virtual Machine, Emulation
al-khaser is an open-source proof-of-concept security tool that deliberately implements techniques commonly used by real-world malware to test and evaluate the effectiveness of antivirus and endpoint detection and response (EDR) systems. It’s written in C/C++ and designed to execute a wide range of anti-analysis, anti-debugging, anti-virtualization, timing-based evasion, and sandbox detection routines so security researchers and defenders can see how well their tools detect or ignore these behaviors. ... -
2
Malware Patch
Prevent UAC authorization of Chinese malware
Prevent UAC authorization of Chinese malware, no need to run in the background. Project inspired by Windows apps that amaze us. The selected program must be signed because this app uses its digital signature to identify the program. -
3
YARA
The pattern matching swiss knife for malware researchers
YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a boolean expression which determines its logic. YARA is multi-platform, running on Windows, Linux and Mac OS X, and can be used through its command-line interface or from your own Python scripts with the yara-python extension. ... -
4
Hypatia
A realtime malware scanner
Hypatia is a free and open-source malware scanner for Android that aims to provide on-device, real-time scanning with minimal battery and resource impact using signature-based detection inspired by ClamAV style databases. Designed as an Android app, it scans user filesystems and installed applications either on demand or in real time when files are written or renamed, operating completely offline aside from occasional signature database downloads. -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
5
FLARE VM
A collection of software installations scripts for Windows systems
...Because security toolchains often clash (DLL versions, signing, privileges), FLARE VM’s packaging handles compatibility issues ahead of time. For investigations involving malware unpacking, sandboxing, static analysis, or code reversing on Windows, the platform dramatically accelerates readiness and consistency across analysts. -
6
anti-distill
Anti-distillation for employee Skills
anti-distill is a research-oriented project focused on protecting machine learning models from knowledge distillation attacks, where smaller models attempt to replicate the behavior of larger proprietary systems. The project explores techniques that make it harder for external models to learn from outputs, thereby preserving intellectual property and model uniqueness. -
7
Santa
A binary authorization system for macOS
...Santa is made up of a kernel extension (or a system extension on macOS 10.15+) that monitors and participates in execve() decisions, a userland daemon that makes the execution decisions, a GUI agent that shows notifications when an execve() is blocked, and a command-line utility that oversees system management and the synchronization of database and server. Santa is built to help protect users by stopping the spread of malware and analyzing what's running on a computer, but is by no means a total security system. Ideally Santa works as a part of a defense-in-depth strategy, and other measures should be in place to protect hosts. -
8
malware-samples
A collection of malware samples and relevant dissection information
This repo is a public collection of malware samples and related dissection/analysis information, maintained by InQuest. It gathers various kinds of malicious artifacts, executables, scripts, macros, obfuscated documents, etc., with metadata (e.g., VirusTotal reports), file carriers, and sample hashes. It’s intended for malware analysts/researchers to help study how malware works, how they are delivered, and how it evolves. -
9
-
Custom VMs From 1 to 96 vCPUs With 99.95% UptimeLive migration and automatic failover keep workloads online through maintenance. One free e2-micro VM every month.
-
10
ClamAV
Antivirus engine for detecting trojans, viruses and malware
ClamAV is an open-source antivirus engine developed by Cisco Talos that provides cross-platform malware detection for servers, desktops, and mail systems. Originally designed for Unix environments and email security, it has evolved into a flexible antimalware toolkit capable of identifying millions of viruses, worms, trojans, and other threats. The software includes a command-line scanner, an automatically updating signature database, and a scalable multi-threaded daemon that enables high-performance scanning in production environments. ... -
11
NetherSX2 Classic
Continuation of NetherSX2 based on AetherSX2 3668
NetherSX2-classic is a companion and variant of NetherSX2 that targets a specific older base version of the AetherSX2 emulator (based on the 3668 branch), applying similar custom patches to provide a stable and performant PS2 emulation environment on Android devices. The project stitches in anti-tampering modifications, RetroAchievements notification fixes, and controller and GameDB updates while maintaining the legacy behavior of the classic build for compatibility with titles that might perform better on the older codebase. Because this classic branch starts from a slightly different upstream version than NetherSX2-patch, users often choose it for performance reasons on lower-power devices or for games with known regressions in newer builds. ... -
12
AterBot
A Minecraft bot for keep your Aternos server alive 24/7
Keep your Aternos server alive 24/7. -
13
Volatility
An advanced memory forensics framework
Volatility is a widely used open-source framework for analyzing memory captures (RAM dumps) from Windows, Linux, and macOS systems. It enables investigators and malware analysts to extract process lists, network connections, DLLs, strings, artifacts, and more. Volatility supports many plugins for detecting hidden processes, malware, rootkits, and event tracing. It’s essential in digital forensics and incident response workflows. -
14
Ghidra
Ghidra is a software reverse engineering (SRE) framework
...It supports a wide array of instruction sets and executable formats, offering features such as decompilation, disassembly, scripting, and interactive graphing. Designed for security researchers and analysts, Ghidra provides a robust environment for understanding malware, auditing code, and performing software forensics. It includes both GUI-based and headless analysis modes. -
15
uBlock Origin
An efficient blocker for Chromium and Firefox
...Fast, potent, and lean. uBlock Origin is not an "ad blocker", it is a wide-spectrum blocker, which happens to be able to function as a mere "ad blocker". The default behavior of uBlock Origin, when newly installed, is to block ads, trackers and malware sites through EasyList, EasyPrivacy, Peter Lowe’s ad/tracking/malware servers, Online Malicious URL Blocklist, and uBlock Origin's own filter lists. uBlock Origin (or uBlock₀) is not an ad blocker; it's a general-purpose blocker. uBlock Origin blocks ads through its support of the Adblock Plus filter syntax. uBlock Origin extends the syntax and is designed to work with custom rules and filters. ... -
16
Cromite
Cromite a Bromite fork with ad blocking and privacy enhancements
...It retains the core goal of limiting tracking and intrusive ads by integrating ad blocking directly into the browser engine rather than relying on external extensions, all while striving to reduce telemetry, aggressive analytics, and close manufacturer integration. Cromite emphasizes user choice and control over web content, offering privacy-oriented settings and mitigations such as anti-fingerprinting measures and configurable filters to block unwanted elements. The project extends its focus beyond Android to desktop platforms, building packages that let users benefit from a more private browsing experience without sacrificing compatibility with modern web standards. -
17
hdom_access
receive an email when a file is accessed or modified on linux-unix
receive an email or done a command when a file is accessed or modified or renamed or erased on linux, watch your files access, secure your workstation against viruses and ransomware -
18
AyuGram Desktop
Desktop Telegram client with good customization and Ghost mode.
...Built as a fork of Telegram Desktop, it extends the core experience with advanced features while staying fast and familiar. AyuGram focuses heavily on privacy tools like ghost mode and anti-recall to give users more control over their messaging behavior. The app offers extensive UI and font customization, allowing users to tailor the interface to their personal style. It also includes convenience features such as built-in translation, enhanced media previews, and streamer-friendly options. Available across Windows, macOS, and Linux, AyuGram Desktop is ideal for power users who want a more flexible Telegram experience. -
19
Ghostery
Ghostery Browser Extension for Firefox, Chrome, Opera and Edge
...This is the unified code repository for the Ghostery browser extensions in Chrome, Firefox, Opera and Edge. Browse the web safer, faster & with less annoying ads. Equipped with award-winning AI anti-tracking technology to browse the websafe and quickly. Ghostery helps you stay informed about what companies are tracking you by listing the trackers on each website you visit. Granular control within the detailed view allows you to block and unblock specific trackers. With one click, always allow or forbid Ghostery to block trackers and protect your personal data on a specific site. ... -
20
Portable Executable Parser
lightweight Go package to parse, analyze and extract metadata
Saferwall PE is a lightweight Go package for parsing, analyzing, and extracting metadata from Portable Executable (PE) binaries. Designed with malware analysis in mind, it is robust against malformed PE files and provides detailed insights into executable structures. -
21
Sec-Context
AI Code Security Anti-Patterns distilled from 150+ sources
...Each anti-pattern is paired with a secure coding alternative and explanation, offering educational value for both humans and automated review agents designed to flag or correct unsafe patterns. -
22
TinyClaw
The original Tiny Claw as your personal autonomous AI companion
TinyClaw is an open-source autonomous AI companion framework designed to make personal AI agents simpler, cheaper to run, and more accessible to individual users. The project is built from scratch with a deliberately small native core and a modular plugin architecture that allows capabilities to expand without turning the system into a heavy monolith. Its philosophy centers on creating a persistent AI companion that behaves more like a helpful digital partner than a purely configurable... -
23
Power Pwn
Repurpose Microsoft-trusted executables, service accounts, etc.
Repurpose Microsoft-trusted executables, service accounts and cloud services to power a malware operation. These materials are presented from an attacker’s perspective with the goal of raising awareness to the risks of underestimating the security impact of No Code/Low Code. No Code/Low Code is awesome. -
24
Squawk
Linter for Postgres migrations & SQL
Squawk is a static SQL linter for PostgreSQL designed to catch common mistakes and enforce query best practices. It analyzes raw SQL files and flags errors, anti-patterns, or style issues before queries are deployed. Squawk is ideal for teams that want to enforce SQL standards in CI pipelines. -
25
XX-Net
A web proxy tool
XX-Net is an easy-to-use, anti-censorship web proxy tool from China. It includes GAE_proxy and X-Tunnel, with support for multiple platforms.
