Mquery is an analyst-friendly web GUI that allows malware analysts to search through terabytes of malware using blazingly fast Yara queries. It leverages UrsaDB to accelerate queries with ngrams, providing a quick and efficient way to look through your digital warehouse. To get started, install and start using docker-compose, add files to the SAMPLES_DIR, and index your collection with ursacli in docker.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Kaitai Struct is a declarative language for describing binary data structures.
A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.
A serverless, real-time, and retroactive malware detection tool that scans files with YARA rules and alerts incident response teams.
A tool for injecting and loading executables with a focus on stealth techniques.
Collects Yara rules from over 150 free resources, a free alternative to Valhalla.
A cutting-edge AI-based IT security platform that identifies malware and cyber-attacks within seconds
YaraHunter scans container images, running Docker containers, and filesystems to find indicators of malware.
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.