Third-party Processing(第三方插件)
1.沙盒动态特征提取
1.< Analysis and Evaluation of Dynamic Feature-Based Malware Detection Mehod> : Cuckoo sandbox tool
2.PE-miner
查找PE格式中的内容
1.< An improved Method for Packed malware Detection using PE Header and Section Table information>
3.PE parser:
PE解析器 IDA pro 一种递归下降的反汇编器
1.< malware detection based on deep learning algorithm> -Ding yuxin Zhu siyi
2.< Generative Malware outbreak Detection>-Sean Park , Iqbal Gondal
4.“Python package py parsing”:
1.< Dynamic data fusion using multi-input models for malware classification>
5.解压缩文件:
1.PEiD
1.< malware detection based on deep learning algorithm> -Ding yuxin Zhu siyi
2.< An improved Method for Packed malware Detection using PE Header and Section Table information>
6.真实环境运行恶意软件/使用Wow_comback(PC恢复插件)
1.< Improvement of malware detection and classification using API call sequence alignment and visualization>
7.流量生成与收集平台
1.< A mobile malware detection method using beharior feature in network traffic>
8.malware collector
1.HoneyClients
客户端蜜罐
1.< Malware Behavior Analysis: Learning and Understanding Current Malware Threats>
2.Amun
Automatic Capturing of MaliciousSoftware
1.< Amun:Automatic Capturing of MaliciousSoftware >
2.< Malware Behavior Analysis: Learning and Understanding Current Malware Threats>
Custom Processing (自定义)
1.Pre-CNN:
1.< A hybrid deep learning image-based analysis for effective malware detection>-Sitalakshmal Venkatraman, Mamoun Alazab ,R.Vinayakumar
2.符号转换为数值:
1.< Dynamic data fusion using multi-input models for malware classification>
3.熵值检测是否是packed file:
1.< Detection and Identification of new malware in network Security>