Checksec
0
Free
Checksec is a bash script to check the properties of executables (like PIE, RELRO, Canaries, ASLR, Fortify Source). It has been originally written by Tobias Klein and the original source is available here: http://www.trapkit.de/tools/checksec.html. **MAJOR UPDATES** 2.1.0 Changed structure to be more modular and switched to getopts so options can be in any order. e.g. format=json can be at the end now, however. All options now require --$option=$value instead of --$option $value. --extended option now includes clang CFI and safe stack checks. Last Update: 2024-04-29. For OSX: Most of the tools do not work on mach-O binaries or the OSX kernel, so it is not supported. Cosign Verify Checksec: cosign verify-blob --signature checksec_new.sig --certificate checksec_new.pub checksec --certificate-identity=slimm609@gmail.com --certificate-oidc-issuer=https://github.com/login/oauth. Openssl Verify Checksec: Openssl verification is being deprecated in favor of Cosign Verification, which is backed by a hardware security module and provides a greater level of integrity. openssl dgst -sha256 -verify checksec.pub -signature checksec.sig checksec. Examples: normal (or --format=cli) $check
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A collection of Yara signatures for identifying malware and other threats
Free
A free web-based Yara debugger for security analysts to write hunting or detection rules with ease.
Free
A tool that scans a corpus of malware and builds a YARA rule to detect similar code sections.
Free
Standalone graphical utility for viewing Java source codes from ".class" files.
Free
A tool for signature analysis of RTF files to detect potentially unique parts and malicious documents.
Free
A collection of publicly available YARA rules for detecting and classifying malware.
Free
A PowerShell module for interacting with VirusTotal to analyze suspicious files and URLs.
Free
Collection of Python scripts for automating tasks and enhancing IDA Pro functionality
Free
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security