BinaryAlert
BinaryAlert is an open-source serverless AWS pipeline that provides automated malware detection capabilities for files uploaded to S3 buckets. The system operates by automatically scanning any file uploaded to a designated S3 bucket using a configurable set of YARA rules. When a file is uploaded, BinaryAlert immediately processes it through the scanning pipeline without requiring manual intervention. The tool generates alerts as soon as any YARA rule matches are detected in the scanned files. This immediate notification system enables incident response teams to quickly identify potential threats and take containment actions before malware can spread throughout the environment. BinaryAlert leverages AWS serverless architecture, making it scalable and cost-effective for organizations that need continuous file monitoring. The YARA rule configuration allows users to customize detection capabilities based on their specific threat landscape and security requirements. The system includes documentation and community support through unofficial Slack channels, providing resources for implementation and troubleshooting.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A sandbox for quickly sandboxing known or unknown families of Android Malware
Code to prevent a managed .NET debugger/profiler from working.
A program to manage yara ruleset in a database with support for different databases and configuration options.
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
A static analysis tool for PE files that identifies potential malicious indicators through compiler detection, packing analysis, signature matching, and suspicious string identification.
A binary analysis and management framework for organizing and analyzing malware and exploit samples, and creating plugins.
Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.