Skip to content
@cysinfo

Cysinfo Team

Pinned Loading

  1. API-Tracker API-Tracker Public

    API Tracker by Cysinfo Team

    Python 22 9

  2. PyMal PyMal Public

    PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and Volatility.

    Python 44 18

  3. Exescan Exescan Public

    ExeScan is the FREE console based tool to detect anomalies in PE (Portable Executable) files. It quickly scans given executable file and detect all kind of anomalies in its PE header fields includi…

    Python 21 12

  4. Limon Limon Public

    Forked from monnappa22/Limon

    Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux…

    Python 7 2

  5. HollowFind HollowFind Public

    Forked from monnappa22/HollowFind

    Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect and divert the forensic analysis techniques. The plugin dete…

    Python 1

  6. Psinfo Psinfo Public

    Forked from monnappa22/Psinfo

    Psinfo is a Volatility plugin which collects the process related information from the VAD (Virtual Address Descriptor) and PEB (Process Enivornment Block) and displays the collected information and…

    Python

Repositories

Showing 9 of 9 repositories
  • Exescan Public

    ExeScan is the FREE console based tool to detect anomalies in PE (Portable Executable) files. It quickly scans given executable file and detect all kind of anomalies in its PE header fields including checksum verifications, size of various header fields, improper size of raw data, non-ascii/empty section names etc. Various packers/protectors mod…

    cysinfo/Exescan’s past year of commit activity
    Python 21 12 0 1 Updated Dec 14, 2018
  • API-Tracker Public

    API Tracker by Cysinfo Team

    cysinfo/API-Tracker’s past year of commit activity
    Python 22 9 1 0 Updated Oct 12, 2016
  • Psinfo Public Forked from monnappa22/Psinfo

    Psinfo is a Volatility plugin which collects the process related information from the VAD (Virtual Address Descriptor) and PEB (Process Enivornment Block) and displays the collected information and suspicious memory regions for all the processes running on the system. This plugin should allow a security analyst to get the process related informa…

    cysinfo/Psinfo’s past year of commit activity
    Python 0 17 0 0 Updated Sep 24, 2016
  • HollowFind Public Forked from monnappa22/HollowFind

    Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect and divert the forensic analysis techniques. The plugin detects such attacks by finding discrepancy in the VAD and PEB, it also disassembles the address of entry point to detect any redirection attempts and als…

    cysinfo/HollowFind’s past year of commit activity
    Python 1 35 0 0 Updated Sep 24, 2016
  • ShellDetect Public

    Shell Detect is the FREE tool to detect presence of Shell Code within a file or network stream. You can either provide raw binary file (such as generated from Metasploit [Reference 4]) or network stream file as input to this tool.

    cysinfo/ShellDetect’s past year of commit activity
    Python 8 4 0 0 Updated Jul 10, 2016
  • PyMal Public

    PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and Volatility.

    cysinfo/PyMal’s past year of commit activity
    Python 44 18 0 0 Updated Jul 10, 2016
  • Malpimp Public

    Malpimp is an advanced API tracing tool and designed to automate the reverse engineering process. In the backend it uses pydbg to hook the APIs. It provides include and exclude policies to increase the control on the application in execution. Being command-line tool makes it perfect for automation of malware as well as API tracing of normal appl…

    cysinfo/Malpimp’s past year of commit activity
    8 7 0 0 Updated Jul 10, 2016
  • Limon Public Forked from monnappa22/Limon

    Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open s…

    cysinfo/Limon’s past year of commit activity
    Python 7 GPL-3.0 125 0 0 Updated May 20, 2016
  • linux_mem_diff_tool Public Forked from monnappa22/linux_mem_diff_tool

    Script to perform Linux Memory Diff Analysis Using Volatility

    cysinfo/linux_mem_diff_tool’s past year of commit activity
    Python 0 11 0 0 Updated Sep 20, 2015

Top languages

Python

Most used topics

Loading…