![]() Not possible due to restrictions of VT. Virus-Total upload and indexing module.Separate between database and application.Enable support for platform and architecture in indexing.Git update of platform and new malware.More precise searching and indexing including platform and more.Added 10 more malwares (cool ones) to the DB.Command line arguments are now working.Searching overhaul to a freestyle fashion.The repository holding all files is currently Maldb.db is the DB which theZoo is acting upon to find malware indexed on your drive.ġ04,Source/Original/Dexter,trojan,Dexter,2,unknown,c,x86,win32,NULL,Source Malware files in an encrypted ZIP archive.Malware source code :) Directory Structure: ![]() The actual malwares samples - be careful! /malware/Source pyc import files used by the rest of the application /malwares/Binaries You can find the EULA file in the conf and more. ![]() The conf folder holds files relevant to the particular running of the program but are not part of the application. The following files and directories are responsible for the application's behaviour. The current default state of theZoo runtime is the CLI. You can call the program with the same command line arguments as before. Since version 0.42 theZoo has been undergoing dramatic changes. TheZoo's objective is to offer a fast and easy way of retrieving malware samples and source code in an organized fashion in hopes of promoting malware research. You should have received a copy of the GNU General Public LicenseĪlong with this program. GNU General Public License for more details. MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. This program is distributed in the hope that it will be useful,īut WITHOUT ANY WARRANTY without even the implied warranty of The Free Software Foundation, either version 3 of the License, or It under the terms of the GNU General Public License as published by This program is free software: you can redistribute it and/or modify TheZoo - the most awesome free malware database on the airĬopyright (C) 2015, Yuval Nativ, Lahad Ludar, 5fingers Running them unconstrained means that you will infect yourself or others with vicious and dangerous malware!!! GPL 3 Some of them are worms and will automatically try to spread out. We recommend running them in a VM which has no internet connection (or an internal virtual network if you must) and without guest additions or any equivalents. Please remember that these are live and dangerous malware! They come encrypted and locked for a reason! Do NOT run them unless you are absolutely sure of what you are doing! They are to be used only for educational purposes (and we mean that!) !!! TheZoo's purpose is to allow the study of malware and enable people who are interested in malware analysis (or maybe even as a part of their job) to have access to live malware, analyse the ways they operate, and maybe even enable advanced and savvy people to block specific malware within their own environment. ![]() TheZoo was born by Yuval tisf Nativ and is now maintained by Shahak Shalev. Since we have found out that almost all versions of malware are very hard to come by in a way which will allow analysis, we have decided to gather all of them for you in an accessible and safe way. TheZoo is a project created to make the possibility of malware analysis open and available to the public.
0 Comments
Leave a Reply. |