Last active
January 22, 2022 12:11
-
-
Save MartinThoma/1a1ee801854bad6b169ca1fc732d825a to your computer and use it in GitHub Desktop.
Packages of which clamscan thinks they contain malicious files
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package | version | malware | project description | |
|---|---|---|---|---|
| androbane | 1.0.0 | Py.Trojan.NecroBot-9868091-0 | cyber security library | |
| androwarn | 1.6.1 | Andr.Malware.Agent-1609887 | Yet another static code analyzer for malicious Android applications | |
| atlasutils | 3.0.3 | Win.Trojan.JS-69 | atlas' hacking toolbelt full of toys | |
| badfiles | 0.3.0 | Doc.Exploit.DDEautoexec-6346603-1 | A malicious file detection engine written with Python and Yara. | |
| bane | 4.8.2 | Py.Trojan.NecroBot-9868091-0 | cyber security library | |
| banelib | 1.9.5 | Py.Trojan.NecroBot-9868091-0 | cyber security library | |
| bgmi | 2.2.5 | Win.Downloader.VBS-148 | BGmi is a cli tool for subscribed bangumi. | |
| cp-mn-bd-01-mimicat | 0.0.2 | Win.Dropper.ClipBanker-9778171-0 | (C) CNSIDE (P) Payload - (M) Malicious (N) Non Harmful - (B) Binary (D) Dormant - 01 - Mimikatz | |
| csirtg_mail | 1.0.2 | Doc.Macro.Necurs-6412436-0 | the fastest way to parse mail | |
| ctfbox | 1.10.0 | Win.Trojan.PowercatDownloader-9840813-0 | A box for CTF challenges with some sugar functions | |
| Cuckoo | 2.0.7 | Win.Virus.Triusor-6887833-0 | Automated Malware Analysis System | |
| cvdast | 1.48.15 | Win.Trojan.Hide-1 | To regenerate pytest fixtures and test methods dynamically from OpenAPI spec and Cloudvector APIShark events | |
| doughnuts | 4.21.0 | Py.Backdoor.MetasploitPayload-9875064-0 | A webshell manager for PHP | |
| edeposit.amqp.antivir | 0.1-alpha | Eicar-Signature | E-Deposit module for RabbitMQ antivirus | |
| escposprinter | 6.2 | Win.Trojan.Generic-9878071-0 | Python library to manipulate ESC/POS Printers | |
| fast_mail_parser | 0.2.1 | Win.Trojan.Fareit-9841030-0 | .eml files parsing. | |
| Flask-Docs-Cat | 0.1.4 | Html.Malware.Agent-9804067-0 | Adds Docs support to Flask. | |
| fuglu | 1.0.1 | Eicar-Signature | FuGlu Mail Content Scanner | |
| gpgmailencrypt | 3.4.7 | Win.Test.EICAR_HDB-1 | gpgmailencrypt | |
| grouping | 0.1.8 | Andr.Spyware.Mobtool-7152523-0 | Display and adjust the grouping results | |
| impacket_py35 | 0.9.22.dev0 | Win.Exploit.CVE_2015_0005-1 | Network protocols Constructors and Dissectors | |
| IntelliCoder | 0.5.2 | Win.Trojan.Delfinject-9875551-0 | Shellcoding Helper | |
| levo_ssrfmap | 0.1.12 | Txt.Backdoor.MetasploitPayload-9874938-0 | A packaged version of SSRFmap for use with Levo.ai's CLI. | |
| mapnik2 | 2.2.0 | Heuristics.PNG.CVE-2010-1205 | Python bindings for mapnik | |
| milter | 0.8.18 | Win.Exploit.IFrame-1 | Anti-forgery/reputation tracking/anti-spam milter | |
| oletools | 0.60 | Doc.Exploit.DDEautoexec-6346603-1 | Python tools to analyze security characteristics of MS Office and OLE files (also called Structured Storage/ Compound File Binary Format or Compound Document File Format)/ for Malware Analysis and Incident Response #DFIR | |
| one-lin3r | 2.1 | Txt.Backdoor.MetasploitAwkPayload-9874876-0 | Gives you one-liners that aids in penetration testing operations/privilege escalation and more | |
| packaging | 21.3 | Heuristics.Broken.Executable | Core utilities for Python packages | |
| panoramix_decompiler_abi | 0.5.2 | Heuristics.XZ.DicSizeLimit | Decompiler at the heart of Eveem.org | |
| panoramix-decompiler | 0.4 | Heuristics.XZ.DicSizeLimit | Decompiler at the heart of Eveem.org | |
| panoramix-decompiler-x | 0.4 | Heuristics.XZ.DicSizeLimit | Decompiler at the heart of Eveem.org | |
| pcode2code | 0.1.1 | Doc.Malware.Chronos-6897935-0 | a vba p-code decompiler based on pcodedmp | |
| pwncat_cs | 0.5.1 | Win.Trojan.PSempireInj-7013548-0 | Reverse and bind shell automation framework | |
| py3webfuzz | 0.1.7 | Win.Test.EICAR_HDB-1 | A Python3 module to assist in fuzzing web applications | |
| pydspam | 1.3.2 | Win.Exploit.IFrame-1 | Python interface to libdspam | |
| pyload | 0.1-py3.5 | Unix.Dropper.Mirai-7540662-0 | pyload is a tool to create static binary from python code | |
| pymilter | 1.0.4 | Win.Exploit.IFrame-1 | Python interface to sendmail milter API | |
| qpbane | 1.0.1 | Py.Trojan.NecroBot-9868091-0 | cyber security library | |
| quicksand | 2.0.13 | Rtf.Exploit.CVE_2017_11882-6398227-0 | QuickSand is a module to scan streams inside documents with Yara | |
| rogers | 0.0.1 | Php.Exploit.C99-27 | Malware Similarity and Nearest Neighbor Tool | |
| secret_miner | 0.2.5 | Win.Ransomware.FakeRansom-9875338-0 | mining bitcoin secretly | |
| securetea | 2.2 | Win.Trojan.Agent-35594 | OWASP SecureTea Tool Project | |
| thug | 3.6.1 | BC.Legacy.Exploit.CVE_2010_1885-2 | Low-interaction honeyclient Thug | |
| tinengine | 2.3.7 | Win.Malware.Aauto-9839278-0 | tkinter widget for Tin-lang | |
| websitemailer | 1.1.1 | Win.Dropper.Sykipot-9935245-0 | take a screenshot of a website and send it to a set of email addresses |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment