Home Malware Sandbox: List of Automated Analysis platform

Malware Sandbox: List of Automated Analysis platform


  • VirusTotal: Analyze suspicious files and URLs to detect types of malware, automatically share them with the security community
  • VirScan: Free virus scan is a free online scan service, utilizing various anti-virus programs to diagnose single files.
  • Jotti: Jotti’s malware scan is a free service that lets you scan suspicious files with several anti-virus programs.
  • AntiScan: Online malware scanner without result distribution.

Online Sandbox

  • Joe Sandbox: Joe Sandbox detects and analyzes potential malicious files and URLs on Windows, Android, Mac OS, Linux, and iOS for suspicious activities. It performs deep malware analysis and generates comprehensive and detailed analysis reports.
  • Falcon Sandbox: This is a free malware analysis service for the community that detects and analyzes unknown threats using a unique Hybrid Analysis technology.
  • Any.Run: Cloud-based malware analysis service. Take your information security to the next level. Analyze suspicious and malicious activities using our innovative tools.
  • Reverss: Malware analysis platform
  • Intezer Analyze: Malware analysis platform
  • Valkyrie: Valkyrie is a file verdict system. Different from traditional signature based malware detection techniques Valkyrie conducts several analysis using run-time behavior and hundreds of features from a file and based on analysis results can warn users against malware undetected by classic Anti-Virus products.
  • Amnpardaz: Jevereg analyses the behavior of potential malicious executables. It’s built on top of Amnpardaz Sandbox.
  • IObit Cloud: IObit Cloud is an advanced automated threat analysis system.
  • IRIS-H Digital Forensics: IRIS-H is an online digital forensics tool that performs automated static analysis of files stored in a directory-based or strictly structured formats.
  • SndBox: Malware analysis platform
  • InQuest Labs: The InQuest platform provides high-throughput Deep File Inspection (DFI) for threat and data leakage prevention, detection, and hunting.
  • Hatching Triage: Hatching Triage is our state-of-the-art malware analysis sandbox designed for cross-platform support (Windows, Android, Linux, and macOS), high-volume malware analysis capabilities, and malware configuration extraction for dozens of malware families.
  • Maltiverse: Malware analysis platform
  • MetaDefender Cloud: Simply submit suspicious files to MetaDefender Cloud for analysis. A comprehensive report is created to inform you about the contents of the file.
  • Microsoft Security Intelligence: Microsoft security researchers analyze suspicious files to determine if they are threats, unwanted applications, or normal files. Submit files you think are malware or files that you believe have been incorrectly classified as malware.

Local deployment Sandbox

  • CAPEv2 Sandbox: CAPE is a malware sandbox. It was derived from Cuckoo with the goal of adding automated malware unpacking and config extraction
  • Cuckoo Sandbox: Cuckoo Sandbox is an automated dynamic malware analysis system
  • LiSa Sandbox: Linux Sandbox
  • DrakVuf Sandbox: Automated hypervisor-level malware analysis system
  • AMIRA: Automated Malware Incident Response & Analysis
  • Android Malware Sandbox: Android Malware Sandbox

Malware samples

  • Malquarium: Providing security researchers and other curious people access to malware samples.
  • VirusBay: VirusBay is a web-based, collaboration platform that connects security operations center (SOC) professionals with relevant malware researchers.
  • MalwareBazaar: MalwareBazaar is a project from abuse.ch with the goal of sharing malware samples with the infosec community, AV vendors and threat intelligence providers.
  • TheZoo Malware: theZoo is a project created to make the possibility of malware analysis open and available to the public.
  • Any.Run public sample: Any.Run public sample
  • Cape Sandbox samples: Cape Sandbox Sample
  • das malwerk: DAS MALWERK // malware samples
  • Exploit Database - Exploit and shellcode samples.
  • Infosec - CERT-PA - Malware samples collection and analysis.
  • InQuest Labs - Evergrowing searchable corpus of malicious Microsoft documents.
  • Tracker h3x - Agregator for malware corpus tracker and malicious download sites.
  • Cryptam - Analyze suspicious office documents.

URL Investigation

This post is licensed under CC BY 4.0 by the author.