Raccine Logo

Raccine

0
Free
Visit Website

Raccine is a simple ransomware protection that intercepts and kills malicious processes that attempt to delete shadow copies using vssadmin.exe. It uses YARA rules to scan command line parameters for malicious activity and can be easily uninstalled without leaving any system files modified. However, it may break some backup solutions and block legitimate use of vssadmin.exe. Raccine works by registering a debugger for vssadmin.exe, collecting the parent process IDs, and killing them if malicious activity is detected. It also logs the killed PIDs to the Windows Eventlog. Please note that Raccine should be used at your own risk and may interfere with certain backup solutions.

FEATURES

ALTERNATIVES

Comprehensive endpoint protection solution providing advanced threat detection, proactive defense, and efficient management.

A modern tool for Windows kernel exploration and observability with a focus on security.

Code injection library for OS X with cross-architecture support.

Cloud-based virus scan APIs for securing files, URLs, and content uploads with advanced anti-virus and malware scanning capabilities.

Comprehensive endpoint security solution providing proactive defenses, remediation tools, and centralized management to prevent threats and ensure uptime.

OpenEDR is an open-source platform enhancing cybersecurity through real-time detection and analysis of cyber threats.

A guide to implementing Microsoft AppLocker for application whitelisting

Comprehensive business security suite with enhanced features to protect against malware, phishing, and advanced threats.