RTFSig is a tool designed to make it easy to signature potentially unique parts of RTF files. It requires Python 3 and some basic libraries, which are handled automatically if installed using pip. The tool scans RTF files for unique tags, prints details to the screen, and saves a Yara rule. Basic output is shown on the console, which can be used to search VirusTotal.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A program to manage yara ruleset in a database with support for different databases and configuration options.
A collaborative malware analysis framework with various features for automated analysis tasks.
A static analysis tool for PE files that detects malicious behavior and provides information for manual analysis.
Code to prevent a managed .NET debugger/profiler from working.
Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.