Mquery Logo

Mquery

0
Free
Visit Website

Mquery is an analyst-friendly web GUI that allows malware analysts to search through terabytes of malware using blazingly fast Yara queries. It leverages UrsaDB to accelerate queries with ngrams, providing a quick and efficient way to look through your digital warehouse. To get started, install and start using docker-compose, add files to the SAMPLES_DIR, and index your collection with ursacli in docker.

FEATURES

ALTERNATIVES

YARA rules for ProcFilter to detect malware and threats

A command-line program for finding secrets and sensitive information in textual data and Git history.

A tool designed to handle archive file data and augment Yara's capabilities.

Java decompiler for modern Java features up to Java 14.

A web-based manager for Yara rules, allowing for storage, editing, and management of Yara rules.

Management portal for LoKi scanner with centralized database for scanning activities.

Guide on emulating Raspberry Pi with QEMU and exploring Arm TrustZone research.

A strings statistics calculator for YARA rules to aid malware research.

PINNED