Malware Analysis for Incident Response
Tools and techniques for analyzing, reverse-engineering, and understanding malicious software. Task: Incident Response
Explore 10 curated tools and resources
RELATED TASKS
LATEST ADDITIONS
Interactive malware hunting service with live access to the heart of an incident.
Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.
Collection of malware persistence information and techniques
SwishDbgExt is a Microsoft WinDbg debugging extension that enhances debugging capabilities for kernel developers, troubleshooters, and security experts.
A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.
Repository of scripts, signatures, and IOCs related to various malware analysis topics.
A tool that generates Yara rules for strings and their XOR encoded versions, as well as base64-encoded variations with different padding possibilities.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
A multithreaded YARA scanner for incident response or malware zoos.
A Unix-based tool that scans for rootkits and other malware on a system, providing a detailed report of the scan results.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.