MAEC™ International in scope and free for public use, MAEC is a standardized language for encoding and communicating high-fidelity information about malware based upon attributes such as behaviors, artifacts, and attack patterns.

By eliminating the ambiguity and inaccuracy that currently exists in malware descriptions and by reducing reliance on signatures, MAEC aims to improve human-to-human, human-to-tool, tool-to-tool, and tool-to-human communication about malware; reduce potential duplication of malware analysis efforts by researchers; and allow for the faster development of countermeasures by enabling the ability to leverage responses to previously observed malware instances.


MAEC Project Documentation Repository on

The "MAEC Project Documentation Repository" is available to the community on The goal of this documentation is to make the MAEC Language easier to understand overall and to help users start working with MAEC immediately.

This documentation collection currently includes the following: (1) Getting Started Guide; (2) Use Cases; (3) Suggested Practices; (4) Searchable Data Model Documentation, and (5) MAEC Idioms.

Please send any feedback to the MAEC Community Email Discussion List and/or directly to

Page Last Updated: November 05, 2015