Pithus, the opened pandora's box

The Pandora myth is a kind of theodicy, addressing the question of why there is evil in the world. According to this, Pandora opened a jar (pithos) (commonly referred to as "Pandora's box") releasing all the evils of humanity.

Wikipedia

What Pithus is?

Pithus is a free and open-source mobile threat intelligence platform for activists, journalists, NGOs, researchers...

If you have any question, feel free to contact us at pandora [at] pithus [dot] org or file an issue on Github.

Why Pithus?

Pithus is the answer to the exponential growth of mobile threats. Malicious apps, fake apps, data laundering are the main threats when it comes to mobile security. Their detection and analysis should be available for all and not the property of a private company. Unlike some commercial solutions with exorbitant prices, Pithus is a entirely open platform supported and maintained by the community. Threats such as permanent tracking and data laundering are made possible by the total lack of transparency and the lack of understanding around what and how data is gathered. Pithus brings transparency through clear and structured reports. Activists, journalists, NGOs, and any other technical community can easily generate these reports and leverage them to better understand the threat landscape.

We need your support

For the moment, Pithus is maintained by only one person, support her! Pithus hosting costs 29€ per month.

Limitations

Pithus is currently in beta and runs on a personal computer. The number of returned results is limited to 50. Pithus only does static analysis.

How Pithus works

Pithus analyses, which we want to be as comprehensive as possible, rely on multiple well-known tools such as:

Samples detected as malicious are automatically uploaded to MalwareBazaar.

Under the hood, Pithus is based on: