AutoYara
0
Free
This is the java code implementing the AutoYara algorithm, from our paper Automatic Yara Rule Generation Using Biclustering. Given a set of input files that belong to a given malware family, AutoYara can create Yara rules from the input samples. Our testing indicates it can be successful with as few as 2 sample files, and can achieve very low false positive rates. The goal is to help analysts that need to create rules to weed out the easy families first, so that they can work on the samples that do not yield to automation. This is research code, and comes with no warranty or support. Quick Start: You can download a pre-built binary of AutoYara from the release tab. If you have Java 11 (or greater) installed, you can get started by using the -i flag and providing a path to a file. If you give a folder, files will be selected from that folder recursively. Multiple files/paths can be specified using multiple -i arguments. java -jar AutoYara.jar -i ~/family_dataset/test/azero/ The final output will be written to the current directory. If you want to change the output directory or output file name, you can use --out /path/to/name.yara to change that. Unless you run on a few hun
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A sandbox for quickly sandboxing known or unknown families of Android Malware
Free
YARA module for supporting DCSO format bloom filters with hashlookup capabilities.
Free
Krakatau provides an assembler and disassembler for Java bytecode, supporting conversion, creation, examination, comparison, and decompilation of Java binaries.
Free
A malware processing and analytics tool that utilizes Pig, Django, and Elasticsearch to analyze and visualize malware data.
Free
Educational resources for reverse engineering tutorials by lena151.
Free
Hyara is a plugin that simplifies writing YARA rules with various convenient features.
Free
Redexer is a reengineering tool for Android app binaries with features like RefineDroid and Dr. Android.
Free
Largest open collection of Android malware samples, with 298 samples and contributions welcome.
Free
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Commercial
Vulnerability Management
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security