base64_substring Logo

base64_substring

0
Free
Updated 11 March 2025
Visit Website

The base64_substring tool helps malware analysts search through base64-encoded samples by enumerating all possible base64 encodings for a given search term and generating a yara rule that checks those possibilities. To run an example, generate a yara rule that matches a base64-encoded file containing the term 'Application' by using the provided script. Further reading: 'Searching for Content in Base-64 Strings' by Lee Holmes.

FEATURES

SIMILAR TOOLS

A dataset release policy for the Android Malware Genome Project, requiring authentication and justification for access to the dataset.

A Python library to interface with a cuckoo-modified instance.

A detailed analysis of malicious packages and how they work

A standalone binary inspection tool for Android developers with support for various formats and dependencies.

A framework for creating XNU based rootkits for OS X and iOS security research

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

FLARE-VM is a collection of software installation scripts for Windows systems designed for setting up and maintaining a reverse engineering environment on a virtual machine.

A tool designed to handle archive file data and augment Yara's capabilities.

Explores malware interaction with Windows API and methods for detection and prevention.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved