Binwalk
0
Free
Binwalk is a fast, easy to use tool for analyzing, reverse engineering, and extracting firmware images. Prior to Binwalk v2.3.3, extracted archives could create symlinks which point anywhere on the file system, potentially resulting in a directory traversal attack if subsequent extraction utilities blindly follow these symlinks. Binwalk makes use of many third-party extraction utilities which may have unpatched security issues; Binwalk v2.3.3 and later allows external extraction tools to be run as an unprivileged user using the run-as command line option (this requires Binwalk itself to be run with root privileges). Additionally, Binwalk v2.3.3 and later will refuse to perform extraction as root unless --run-as=root is specified. Even though many major Linux distros are still shipping Python 2.7 as the default interpreter in their currently stable release, Binwalk support has moved exclusively to Python 3.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A new age tool for binary analysis that uses statistical visualizations to help find patterns in large amounts of binary data.
Free
Collects Yara rules from over 150 free resources, a free alternative to Valhalla.
Free
A strings statistics calculator for YARA rules to aid malware research.
Free
KLara is a distributed system written in Python that helps Threat Intelligence researchers hunt for new malware using Yara.
Free
A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.
Free
A framework for reverse engineering Flutter apps with modified Flutter library for dynamic analysis and traffic monitoring.
Free
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Free
Resources
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
Commercial
Data Protection
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Commercial
Security Operations
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Commercial
Application Security
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Commercial
IAM
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security