What is the pricing for NotRuler?

NotRuler is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/sensepost/notruler/ for download and installation instructions.

What are alternatives to NotRuler?

Popular alternatives to NotRuler include: 1. MailXaminer Email Decryption - Decrypts S/MIME & OpenPGP emails from PST/OST/EDB for forensic analysis. (Commercial) 2. libesedb - A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes. (Free) 3. Untitled Goose Tool - A robust and flexible hunt and incident response tool for investigating AzureAD, Azure, and M365 environments. (Free) 4. im0rtp3's Yara rule repository - A collection of Yara rules licensed under the DRL 1.1 License. (Free) 5. StrangeBee TheHive IaaS Images - Collaborative case management platform for incident response and investigation (Commercial) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use NotRuler?

NotRuler is for security teams and organizations that need Rules, Attack Detection, Microsoft 365. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

NotRuler | CybersecTools

NotRuler

NotRuler is a tool for Exchange Admins to detect client-side Outlook rules and VBScript enabled forms, aiding in the detection of attacks created through Ruler.

Free94

Visit Website

Compare

Free94

NotRuler

NotRuler is a tool for Exchange Admins to detect client-side Outlook rules and VBScript enabled forms, aiding in the detection of attacks created through Ruler.

Visit Website

Data verified Apr 2026

Explore Security Operations 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

NotRuler Description

Security Operations/Digital Forensics and Incident Response

Rules Attack Detection Microsoft 365

NotRuler is a tool that allows Exchange Admins to remotely interact with Exchange servers to detect client-side Outlook rules and VBScript enabled forms, aiding in the detection of attacks created through Ruler. It provides the ability to query Exchange mailboxes, check for compromise, extract stager addresses for malicious rules, extract VBScript used in forms, and check for 'homepage' and extract URLs. The tool has compiled binaries for Linux, OSX, and Windows, with information on setting up from source available in the getting-started guide. NotRuler operates in two modes: Rules to check for client-side rules, Forms to check for VBScript enabled forms, and Homepage to check for a custom homepage.

NotRuler Description

Security Operations/Digital Forensics and Incident Response

Rules Attack Detection Microsoft 365

NotRuler FAQ

Common questions about NotRuler including features, pricing, alternatives, and user reviews.

NotRuler is NotRuler is a tool for Exchange Admins to detect client-side Outlook rules and VBScript enabled forms, aiding in the detection of attacks created through Ruler. It is a Security Operations solution designed to help security teams with Rules, Attack Detection, Microsoft 365.

Have more questions? Browse our categories or search for specific tools.

NotRuler

NotRuler

NotRuler Description

NotRuler Description

NotRuler FAQ

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES