A curated list of open-source projects containing protestware sourced from various platforms.
Free
HAWK is a multi-cloud antivirus scanning API based on CLAMAV and YARA, designed for AWS S3, Azure Blob Storage, and GCP Cloud Storage. It features a microservice for scanning streams with YARA and CLAMAV, scanning S3 bucket objects, moving clean S3 objects to another bucket, quarantining infected S3 objects, and auto-updating the CLAMAV DB. It also supports various YARA rule functionalities, logging improvement using logrus, and provides an Image API with multiple available endpoints for scanning, rule management, metrics, and health information. Installation is recommended through automated builds available on the Registry.
A curated list of open-source projects containing protestware sourced from various platforms.
Blazingly fast Yara queries for malware analysts with an analyst-friendly web GUI.
VolatilityBot automates binary extraction and memory analysis, including detecting code injections and strings.
A collection of Yara rules for detecting malware evasion techniques
A Burp plugin for identifying potential vulnerabilities in web applications
RetDec is a versatile machine-code decompiler with support for various file formats and architectures.