Android Loadable Kernel Modules (android-lkms)
Android Loadable Kernel Modules (android-lkms) are mostly used for reversing and debugging on controlled systems/emulators. These modules include antiptrace for simple ptrace hooking, open-read-write for hooking functions to track file interactions of malware, and antiunlink to prevent specific package names from unlinking files in their directories. Warning: Not recommended for production environments as they may slow down qemu environments and have unexpected outcomes.
FEATURES
ALTERNATIVES
A single cybersecurity platform that provides holistic security management, prevention, detection, and response capabilities powered by AI and threat intelligence, designed to simplify and converge security operations in diverse hybrid IT environments.
Kunai is a Linux-based system monitoring tool that provides real-time monitoring and threat hunting capabilities.
Sophos Intercept X Endpoint is a comprehensive endpoint security solution that provides unparalleled protection against advanced attacks, ransomware, and data loss.
A repository providing guidance on collecting security-relevant Windows event logs using Windows Event Forwarding (WEF).
Deep Instinct is a predictive prevention platform that uses deep learning to prevent unknown threats, including ransomware and zero-day malware, from infiltrating storage environments, applications, and endpoints.
A static analysis framework for extracting key characteristics from various file formats
YARA-Endpoint is a client-server architecture tool that can be used for endpoint protection and incident response.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.