base64_substring Logo

base64_substring

0
Free
Malware Analysis
Binary Security
File Analysis
Hex Dump
Binary Conversion
File Patching
Yara
Visit Website

The base64_substring tool helps malware analysts search through base64-encoded samples by enumerating all possible base64 encodings for a given search term and generating a yara rule that checks those possibilities. To run an example, generate a yara rule that matches a base64-encoded file containing the term 'Application' by using the provided script. Further reading: 'Searching for Content in Base-64 Strings' by Lee Holmes.

FEATURES

ALTERNATIVES

Static File Analyzer (SFA) Logo
Static File Analyzer (SFA)

A tool for deep analysis of malicious files using ClamAV and YARA rules, with features like scoring suspect files, building visual tree graphs, and extracting specific patterns.

Free
Malware Analysis
yextend Logo
yextend

A tool designed to handle archive file data and augment Yara's capabilities.

Free
Malware Analysis
GitGot Logo
GitGot

A tool for identifying sensitive secrets in public GitHub repositories

Free
Malware Analysis
xssmap Logo
xssmap

A Python-based tool for detecting XSS vulnerabilities

Free
Malware Analysis
IOCextractor Logo
IOCextractor

A program to extract IOCs from text files using regular expressions

Free
Malware Analysis
Leveraging INF-SCT Fetch & Execute Techniques For Bypass, Evasion, & Persistence (Part 2) Logo
Leveraging INF-SCT Fetch & Execute Techniques For Bypass, Evasion, & Persistence (Part 2)

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

Free
Malware Analysis
Pylibemu Logo
Pylibemu

Python wrapper for the Libemu library for analyzing shellcode.

Free
Malware Analysis
Mquery Logo
Mquery

Blazingly fast Yara queries for malware analysts with an analyst-friendly web GUI.

Free
Malware Analysis

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security