PyMal is a python based interactive Malware Analysis Framework. It is built on the top of three pure python programes Pefile, Pydbg and Volatility.

The main aim of the project is to combine all the Malware Analysis related tools into a single interface for rapid analysis.


PyMal have several wrapper functions to manipulate Executable as well as running Processes. It also offers some advanced features like

  • Injected Code Detection
  • Hook Detection using Passive Image Referencing

For detailed view of the features and working, please check out the demonstration video shown below.


It works on all platforms starting from Windows XP to Windows 8.

View on Github


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.