Whitelist

Yabin creates Yara signatures from malware to find similar samples.

Tool to identify and understand code-injection vulnerabilities in Windows 7 UAC whitelist system.

A repository documenting AppLocker bypass techniques with verified methods, legacy DLL execution approaches, and a PowerShell module for identifying AppLocker weaknesses.

Maltrail is a malicious traffic detection system utilizing blacklists and heuristic mechanisms.

A repository containing scripts and configuration files to help administrators implement Microsoft AppLocker for application whitelisting based on NSA security guidelines.