Hfinger Logo

Hfinger

0
Free
Malware Analysis
http
malware
fingerprinting
security
Visit Website

Tool for fingerprinting HTTP requests of malware. Based on Tshark and written in Python3. Working prototype stage :-) Its main objective is to provide unique representations (fingerprints) of malware requests, which help in their identification. Unique means here that each fingerprint should be seen only in one particular malware family, yet one family can have multiple fingerprints. Hfinger represents the request in a shorter form than printing the whole request, but still human interpretable. Hfinger can be used in manual malware analysis but also in sandbox systems or SIEMs. The generated fingerprints are useful for grouping requests, pinpointing requests to particular malware families, identifying different operations of one family, or discovering unknown malicious requests omitted by other security systems but which share fingerprint. An academic paper accompanies work on this tool, describing, for example, the motivation of design choices, and the evaluation of the tool compared to p0f, FATT, and Mercury.

FEATURES

ALTERNATIVES

r2con-2017 Logo
r2con-2017

Collection of slides, materials, demos, crackmes, and writeups from r2con-2017 conference.

Free
Malware Analysis
xsshunter Logo
xsshunter

A portable version of XSSHunter.com for finding and exploiting Cross-Site Scripting (XSS) vulnerabilities.

Free
Malware Analysis
jwt-hack Logo
jwt-hack

A tool for hacking and security testing of JWT

Free
Malware Analysis
LinkFinder Logo
LinkFinder

A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.

Free
Malware Analysis
Linx Logo
Linx

A tool that reveals invisible links within JavaScript files

Free
Malware Analysis
xocopy Logo
xocopy

Copy executables with execute, but no read permission on Unix systems.

Free
Malware Analysis
TRISIS / TRITON / HatMan Malware Repository Logo
TRISIS / TRITON / HatMan Malware Repository

Repository of TRISIS/TRITON/HatMan malware samples and decompiled sources targeting ICS Triconex SIS controllers.

Free
Malware Analysis
Munin Logo
Munin

An online hash checker utility that retrieves information from various online sources, including Virustotal, HybridAnalysis, and more.

Free
Malware Analysis

PINNED

Fabric Platform by BlackStork Logo

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free
Security Operations
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free
Blogs and News
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved

LINKS
Blog
LEGAL
Terms of servicesPrivacy policy