Skip to content

Instantly share code, notes, and snippets.

What would you like to do?

Malware Research, Collection, and Analysis

All of this information was collected by doing google searches or from the URLs mentioned in the References section. I collected them here because I wanted a single list that I could update, refer to, and share with others. Simply having a link listed here is not necessarily an endorsement. I only have personal experience with a small number of the resources listed here. I did however, make an initial attempt to remove dead links from the reference links. Some good starting points are Lenny Zelster's Reverse-Engineering Malware Cheat Sheet and Analyzing Malicious Documents Cheat Sheet. In fact, as you'll notice in the reference section, Lenny's site is included multiple times. He has some really awesome information.

Mailing Lists and Discussion Forums!forum/malware-removal!forum/virustotal!forum/mobilemalware!forum/hk-malware-analysis

Acquiring Samples


Static Analysis

  • HashCalc
  • TrID-File Identifier
  • PEview
  • PEID
  • BinText
  • Dependency Walker
  • Heap Inspector
  • Unix Strings
  • IDA
  • OllyDBG

Dynamic Analysis

  • RegShot
  • InCtrl5
  • RegMon
  • ProcMon
  • FileMon
  • NetCat
  • BinText
  • LordPE
  • Wireshark
  • FakeDNS
  • FakeNet
  • Multipot
  • APIMonitor
  • SysAnalyzer
  • MCaptureBAT
  • Memoryze
  • HBGary Fast Dump
  • Volatility

Automated Analysis

Free Automated Online Analysis

Free Online Link Checkers

Sharing with other researchers


Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment