ysoserial.net
A deserialization payload generator for .NET formatters
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches). Uses: PE-sieve (the library version). PE-sieve FAQ - Frequently Asked Questions Read Wiki Clone Use recursive clone to get the repo together with all the submodules: git clone --recursive https://github.com/hasherezade/hollows_hunter.git Builds Download the latest release, or read more. Available also via Chocolatey
A deserialization payload generator for .NET formatters
A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.
OCyara performs OCR on image files and scans them for matches to Yara rules, supporting Debian-based Linux distros.
Automated Android Malware Analysis tool
A Go library for manipulating YARA rulesets with the ability to programatically change metadata, rule names, and more.
A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.