manalyze Logo

manalyze

0
Free
Visit Website

Manalyze is a static analysis tool for PE files that collects weak signals that could indicate malicious behavior and displays information to help with subsequent manual analysis. It can identify a PE's compiler, detect packed executables, apply ClamAV signatures, search for suspicious strings, and more.

FEATURES

ALTERNATIVES

PLASMA is an interactive disassembler with support for various architectures and formats, offering a Python API for scripting.

A PE/COFF file viewer that displays header, section, directory, import table, export table, and resource information within various file types.

Bindings for the Yara library from VirusTotal with support for Yara v4.2 and various features like rule compilation and scanning.

A collection of reverse engineering challenges covering a wide range of topics and difficulty levels.

A tool that scans a corpus of malware and builds a YARA rule to detect similar code sections.

Automatic YARA rule generation for malware repositories.

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

Go bindings for YARA with installation and build instructions.