# rshipp/awesome-malware-analysis **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/rshipp-awesome-malware-analysis).** 13,864 stars · 2,668 forks · NOASSERTION ## Links - GitHub: https://github.com/rshipp/awesome-malware-analysis - Homepage: https://gazafunds.com/ - awesome-repositories: https://awesome-repositories.com/repository/rshipp-awesome-malware-analysis.md ## Topics `analysis-framework` `automated-analysis` `awesome` `awesome-list` `chinese` `chinese-translation` `domain-analysis` `drop-ice` `dynamic-analysis` `list` `malware-analysis` `malware-collection` `malware-research` `malware-samples` `network-traffic` `static-analysis` `threat-intelligence` `threat-sharing` `threatintel` ## Description This project is a comprehensive, community-driven directory of open-source tools, datasets, and documentation for malware analysis and cybersecurity research. It serves as a centralized index for security professionals and researchers to locate resources for investigating, reverse engineering, and analyzing malicious software. The directory organizes information through a structured taxonomy, covering specialized domains such as memory forensics, network traffic inspection, and honeypot threat research. By aggregating links to external utilities and frameworks, it provides a platform-agnostic reference for identifying tools used in static analysis, dynamic sandboxing, and threat intelligence gathering. The repository is maintained as a collection of markdown files, facilitating version control and collaborative updates from the security community. This structure allows users to navigate complex technical categories efficiently to find the specific debuggers, disassemblers, and forensic utilities required for incident investigation. ## Tags ### Repository Format - [Awesome List](https://awesome-repositories.com/f/repository-format/awesome-list.md) — A community-curated directory that catalogs and links out to other open-source projects, rather than a standalone tool you run yourself. ### Security & Cryptography - [Malware Analysis](https://awesome-repositories.com/f/security-cryptography/malware-analysis.md) — Serves as a primary directory for reverse engineering tools used to dissect malicious software. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) - [Security Research Directories](https://awesome-repositories.com/f/security-cryptography/security/offensive-operations/vulnerability-research-analysis/research-reference-knowledge/security-research-directories.md) — Provides a curated directory of tools and documentation for security researchers analyzing malicious software. - [Reverse Engineering Tools](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/digital-forensics-analysis/reverse-engineering-tools.md) — Maintains a structured directory of debuggers and disassemblers for reverse engineering malicious code. - [Malware Analysis Tools](https://awesome-repositories.com/f/security-cryptography/malware-analysis-tools.md) — Curates a comprehensive directory of tools and datasets for investigating malicious software. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) - [Traffic Inspection and Manipulation](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/network-security/traffic-inspection-manipulation.md) — Indexes utilities for inspecting network traffic to identify command-and-control communications. - [Forensic Tools](https://awesome-repositories.com/f/security-cryptography/security/utilities/security-tools/digital-forensics-analysis/forensic-tools.md) — Lists specialized forensic utilities for examining system memory and extracting volatile artifacts. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) - [Incident Investigation Tools](https://awesome-repositories.com/f/security-cryptography/incident-investigation-tools.md) — Provides specialized tools and datasets to assist in security incident investigation. - [Honeypots](https://awesome-repositories.com/f/security-cryptography/security/computer-security-principles/cyber/honeypots.md) — Indexes platforms and environments for deploying honeypots to capture and analyze live malware. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) - [Threat Intelligence Resources](https://awesome-repositories.com/f/security-cryptography/threat-intelligence-resources.md) — Provides access to threat intelligence resources and indicators of compromise for security research. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) ### Education & Learning Resources - [Cybersecurity Training Materials](https://awesome-repositories.com/f/education-learning-resources/educational-resources/courses-training-certifications/courses-structured-learning/courses/cybersecurity-training-materials.md) — Acts as a comprehensive index of open-source utilities and research materials for cybersecurity professionals. ### Part of an Awesome List - [Security Collections](https://awesome-repositories.com/f/awesome-lists/learning/security-collections.md) — Resources for analyzing and reverse-engineering malicious software. - [Awesome Lists](https://awesome-repositories.com/f/awesome-lists/more/awesome-lists.md) — Resources for analyzing and researching malicious software. - [Related Awesome Lists](https://awesome-repositories.com/f/awesome-lists/more/related-awesome-lists.md) — Tools and methodologies for analyzing malicious software. - [Related Security Lists](https://awesome-repositories.com/f/awesome-lists/more/related-security-lists.md) — Tools and techniques for analyzing malicious software. - [Security Curated Lists](https://awesome-repositories.com/f/awesome-lists/more/security-curated-lists.md) — Tools and resources for analyzing malicious software. - [Security Lists](https://awesome-repositories.com/f/awesome-lists/more/security-lists.md) — Tools and resources for malware analysis. - [Security Resource Lists](https://awesome-repositories.com/f/awesome-lists/more/security-resource-lists.md) — Collects tools and resources for analyzing malicious software. - [Honeypot Management](https://awesome-repositories.com/f/awesome-lists/security/honeypot-management.md) — Resources for analyzing artifacts captured by honeypots. - [Malware and Reverse Engineering](https://awesome-repositories.com/f/awesome-lists/security/malware-and-reverse-engineering.md) — Tools and resources for analyzing malicious software. - [Security](https://awesome-repositories.com/f/awesome-lists/security/security.md) — Listed in the “Security” section of the Awesome awesome list. - [Security And Privacy](https://awesome-repositories.com/f/awesome-lists/security/security-and-privacy.md) — Tools and techniques for analyzing malicious software. - [Security & Privacy](https://awesome-repositories.com/f/awesome-lists/security/security-privacy.md) — Malware analysis tools and resources. - [Security Resources](https://awesome-repositories.com/f/awesome-lists/security/security-resources.md) — Listed in the “Security Resources” section of the Awesome Hacking awesome list. ### Data & Databases - [Categorical](https://awesome-repositories.com/f/data-databases/data-governance-modeling/taxonomies/categorical.md) — Organizes security resources into a hierarchical taxonomy to facilitate navigation of complex technical domains. ### Networking & Communication - [Network Traffic Analyzers](https://awesome-repositories.com/f/networking-communication/network-traffic-analyzers.md) — Provides resources for capturing and inspecting network traffic to identify malicious activity. ([source](https://cdn.jsdelivr.net/gh/rshipp/awesome-malware-analysis@main/README.md)) ### Development Tools & Productivity - [Community Curation Workflows](https://awesome-repositories.com/f/development-tools-productivity/community-curation-workflows.md) — Maintains a collaborative directory of security tools through community-driven submission and verification processes.