Factual Rules Generator Logo

Factual Rules Generator

0
Free
Updated 11 March 2025
Digital Forensics
Appsec
Binary Security
File Analysis
Forensics
Rule Engine
Security Audit
Visit Website

Factual Rules Generator is an open source project that generates YARA rules about installed software from a running operating system. The software aims to use a set of rules against collected digital forensic evidences to find installed software efficiently. It can be used to baseline known software from Windows systems and create rules for identifying similar installations on other systems. Dependencies include pefile, psutil, ndjson, python-tlsh, PyInstaller, ssdeep, and additional tools like xxd and curl.

FEATURES

EXPLORE BY TAGS

Appsec

Binary Security

File Analysis

Forensics

Rule Engine

Security Audit

SIMILAR TOOLS

Fridump Logo
Fridump

Fridump is an open source memory dumping tool using the Frida framework for dumping memory addresses from various platforms.

Free
Digital Forensics
Hoarder Logo
Hoarder

Hoarder is a tool to collect and parse windows artifacts.

Free
Digital Forensics
Linux Expl0rer Logo
Linux Expl0rer

Easy-to-use live forensics toolbox for Linux endpoints with various capabilities such as process inspection, memory analysis, and YARA scanning.

Free
Digital Forensics
M.E.A.T. - Mobile Evidence Acquisition Toolkit Logo
M.E.A.T. - Mobile Evidence Acquisition Toolkit

Toolkit for performing acquisitions on iOS devices with logical and filesystem acquisition support.

Free
Digital Forensics
ChromeFreak Logo
ChromeFreak

A Cross-Platform Forensic Framework for Google Chrome that allows investigation of history, downloads, bookmarks, cookies, and provides a full report.

Free
Digital Forensics
Margarita Shotgun Logo
Margarita Shotgun

Python tool for remote memory acquisition

Free
Digital Forensics
DMG2IMG Logo
DMG2IMG

DMG2IMG is a tool for converting Apple compressed dmg archives to standard image disk files with support for zlib, bzip2, and LZFSE compression.

Free
Digital Forensics
Magnet ACQUIRE Logo
Magnet ACQUIRE

Magnet ACQUIRE offers robust data extraction capabilities for digital forensics investigations, supporting a wide range of devices.

Free
Digital Forensics
unix_collector Logo
unix_collector

A shell script for basic forensic collection of various artefacts from UNIX systems.

Free
Digital Forensics

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy