- Joined
- Jan 8, 2019
- Messages
- 56,623
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,456
- Points
- 2,313
- Credits
- 32,750
6 Years of Service
76%
Freki is a free and open-source malware analysis platform.
Goals
Facilitate malware analysis and reverse engineering;
Provide an easy-to-use REST API for different projects;
Easy deployment (via Docker);
Allow the addition of new features by the community.
Current features
Hash extraction.
VirusTotal API queries.
Static analysis of PE files (headers, sections, imports, capabilities, and strings).
Pattern matching with Yara.
Web interface and REST API.
User management.
Community comments.
Download samples.
Technology
Freki currently uses the following technology to get everything running:
Front-end
Bootstrap: for easy and responsive interface development
Back-end
Python: main programming language
Flask: lightweight web application framework
SQLAlchemy: Python SQL toolkit
Gunicorn: Python WSGI HTTP Server
VirusTotal API: for querying the detection reports
Yara: for pattern matching
pefile: to parse information about PE files
capa: to identify capabilities in PE files
Infrastructure
Docker: for easy deployment through containers
Nginx: a preferred web server
MariaDB: for storing information about samples