Encyclopedia for Executables
-
Updated
Nov 9, 2021 - PowerShell
Encyclopedia for Executables
Pure-Python library for computing fuzzy hashes (ssdeep)
ssdeep cluster analysis for malware files
A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
Library for calculating context triggered piecewise hashes (CTPH) also called fuzzy hashes.
A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.
Oops, It's funny to detect a webshell. Temporarily not maintained
Volatility plugin to calculate and compare Windows processes fuzzy hashes
fuzzy hash in python (from ssdeep)
Import, Update, and Categorize malware samples from Malpedia (https://malpedia.caad.fkie.fraunhofer.de/) to a MISP (https://www.misp-project.org/) instance.
Add a description, image, and links to the ssdeep topic page so that developers can more easily learn about it.
To associate your repository with the ssdeep topic, visit your repo's landing page and select "manage topics."