base64_substring Logo

base64_substring

0
Free
Visit Website

The base64_substring tool helps malware analysts search through base64-encoded samples by enumerating all possible base64 encodings for a given search term and generating a yara rule that checks those possibilities. To run an example, generate a yara rule that matches a base64-encoded file containing the term 'Application' by using the provided script. Further reading: 'Searching for Content in Base-64 Strings' by Lee Holmes.

FEATURES

ALTERNATIVES

A Burp intruder extender for automating and validating XSS vulnerabilities

Discontinued project for file-less persistence, attacks, and anti-forensic capabilities on Windows 7 32-bit systems.

angr is a Python 3 library for binary analysis with various capabilities like symbolic execution and decompilation.

PinCTF is a tool for using Intel's Pin Tool to instrument reverse engineering binaries and count instructions.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Andromeda makes reverse engineering of Android applications faster and easier.

Automate the exploitation of XXE vulnerabilities

A command-line program for finding secrets and sensitive information in textual data and Git history.