Dorothy2
Dorothy2 is a malware/botnet analysis framework written in Ruby. It offers a very flexible modular environment for suspicious binary analysis, interactive investigation framework with a focus on network analysis, and the ability to recognize new spawned processes by comparing them with a baseline. It also utilizes pre-configured analysis profiles for detailed analysis.
FEATURES
ALTERNATIVES
Tplmap is a tool for detecting and exploiting server-side template injection vulnerabilities.
Tool for decompressing malware samples to run Yara rules against them.
A file analysis framework that automates the evaluation of files by running a suite of tools and aggregating the output.
A tool for injecting and loading executables with a focus on stealth techniques.
Dynamic binary analysis library with various analysis and emulation capabilities.
A PowerShell module for interacting with VirusTotal to analyze suspicious files and URLs.
A tool for signature analysis of RTF files to detect potentially unique parts and malicious documents.
Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.