Copland is an open source (GPL v2) research project to dynamically analyze the behavior of malware. Zero wine just runs the malware using WINE in a safe virtual sandbox (in an isolated environment) collecting information about the APIs called by the program. The output generated by wine (using th...

not much yet

==YARA in a nutshell== YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families based on textual or binary patterns contained on samples of those families. Each description consists of a set of stri...

MIR, or Malware Investigation and Response, is a framework for automating first level analysis of malware. MIR uses a variety of automated tools, some local and some remote, to give you a starting-off point for analyzing malware. A proof-of-concept command-line tool was written that uses the foll...

Store and Analyze suspected files for known malware and suspicious behavior and write findings into Amazon AWS SimpleDB. Highly modularized architecture based on the UNIX philosophy: Do only one thing and do it well. = Current modules: = * Sample storage to Amazon S3 service * CWSandBox ...

University Project Create a unique signature for malwares.

TODO

=== Rapid Assessment & Potential Incident Examination Report === RAPIER is a security tool built to facilitate first response procedures for incident handling. It is designed to acquire commonly requested information and samples during an information security event, incident, or investigation. RA...

==Software from virtualminds.es== *MHC (Malware Hash Checker)* Download from [http://code.google.com/p/virtualminds/downloads/list]

The scope of this project is to improve situational awareness about malicious cryptographic code, cryptographic-viral binary protection methods, compression, detection, heuristics, emulation and evasion. Contact: komodopgmp@gmail.com | [http://komodopgmp.googlecode.com/files/komodopgmp.asc pgp]...