vx-underground (@vxunderground) / Twitter
Posted by jpluimers on 2025/09/09
I thought I had been living under a stone for decades when I bumped into vx-underground (@vxunderground) / Twitter
The largest collection of malware source code, samples, and papers on the internet.
Password: infected
That appeared to be untrue as vx-underground, ran by a team of volunteers, started in 2019 ([Archive] web.archive.org/web//vx-underground.org) right when a few crisis in my life came together at the same time.
So here are the links for my archive as they are great content for both Red Teams and Blue Teams on many things cyber security related:
- [Wayback/Archive] vx-underground site with many sub-sections which at the time of writing are Home, Code, Archive, ICS SCADA Papers, Linux Papers, Malware Defense Papers, Other Papers,Russian Papers, The Old New Thing Papers, Windows Papers, Malware Collections.
- [Wayback/Archive] GitHub: vxunderground with at the time of writing 4 repositories:
- [Wayback/Archive] vxunderground/MalwareSourceCode: Collection of malware source code for a variety of platforms in an array of different programming languages.
- [Wayback/Archive] vxunderground/VXUG-Papers: Research code & papers from members of vx-underground.
- [Wayback/Archive] vxunderground/VX-API: Collection of various malicious functionality to aid in malware development
- [Wayback/Archive] vxunderground/ThreatIntelligenceDiscordBot: Gets updates from various clearnet domains and ransomware threat actor domains
–jeroen
PS:
- note that at first
https://web.archive.org/web/*/vx-underground.orgdid not want to save in Archive.is, so I used the workaround I described in Working around Archive.is/.today/.ph/.li/.vn/.fo/.md eternal spinner “Loading” when trying to archive a page.
The Wiert Corner - irregular stream of stuff 
Leave a comment