Mastiff
MASTIFF is a static analysis framework that automates the process of extracting key characteristics from various file formats. It uses a community-driven set of plug-ins to perform file analysis and data extraction, supporting a broad range of analytic needs. The framework allows analysts to focus on analysis rather than figuring out how to parse files. Originally designed for malware, intrusion, and forensic analysis, MASTIFF is well-suited to support a broader range of analytic needs.
FEATURES
SIMILAR TOOLS
CrowdStrike Falcon is a unified cybersecurity platform providing complete protection through its AI-native XDR platform.
Endpoint security solution for businesses with advanced threat protection and management
Emsisoft Enterprise Security + EDR provides robust and proven endpoint security for organizations of all sizes with layered protection and a cloud-based management console.
FortiEDR is an automated endpoint security solution that integrates with the Fortinet Security Fabric and third-party solutions to reduce MTTR and provide real-time breach detection and response.
YARA-Endpoint is a client-server architecture tool that can be used for endpoint protection and incident response.
Deep Instinct is a predictive prevention platform that uses deep learning to prevent unknown threats, including ransomware and zero-day malware, from infiltrating storage environments, applications, and endpoints.
A Python library for loading and executing Beacon Object Files (BOFs) in-memory.
A free endpoint security tool for host investigative capabilities to find signs of malicious activity through memory and file analysis.
A lightweight malware detection and removal tool that provides real-time protection against complex attacks while preserving system resources.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.