Binwalk Logo

Binwalk

0
Free
Malware Analysis
binary-security
firmware-analysis
file-analysis
reverse-engineering
directory-traversal
Visit Website

Binwalk is a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images. Prior to Binwalk v2.3.3, extracted archives could create symlinks which point anywhere on the file system, potentially resulting in a directory traversal attack if subsequent extraction utilities blindly follow these symlinks. Binwalk makes use of many third-party extraction utilities which may have unpatched security issues; Binwalk v2.3.3 and later allows external extraction tools to be run as an unprivileged user using the run-as command line option (this requires Binwalk itself to be run with root privileges). Additionally, Binwalk v2.3.3 and later will refuse to perform extraction as root unless --run-as=root is specified. Even though many major Linux distros are still shipping Python 2.7 as the default interpreter in their currently stable release, Binwalk support has moved exclusively to Python 3.

FEATURES

ALTERNATIVES

mkYARA Logo
mkYARA

Automate the process of writing YARA rules based on executable code within malware.

Free
Malware Analysis
yextend Logo
yextend

A tool designed to handle archive file data and augment Yara's capabilities.

Free
Malware Analysis
YARA-Signator Logo
YARA-Signator

Automatic YARA rule generation for malware repositories.

Free
Malware Analysis
Hfinger Logo
Hfinger

Tool for fingerprinting malware HTTP requests.

Free
Malware Analysis
lw-yara Logo
lw-yara

A Yara ruleset for detecting PHP shells and other webserver malware.

Free
Malware Analysis
Threat.Zone Logo
Threat.Zone

Holistic malware analysis platform with interactive sandbox, static analyzer, and emulation capabilities.

Free
Malware Analysis
Fernflower Logo
Fernflower

Fernflower is an analytical decompiler for Java with command-line options and support for external classes.

Free
Malware Analysis
DefaultCreds-cheat-sheet Logo
DefaultCreds-cheat-sheet

A cheat sheet for default credentials to aid in penetration testing and vulnerability assessment

Free
Malware Analysis

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Fabric Platform by BlackStork Logo

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free
Security Operations
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free
Blogs and News
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
RoboShadow Logo

RoboShadow

A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.

Commercial
Vulnerability Management
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved

LINKS
Blog
LEGAL
Terms of servicesPrivacy policy