statiStrings Logo

statiStrings

0
Free
Visit Website

statiStrings is a strings statistics calculator for YARA rules that aids malware research by finding common and unique strings within malware samples, common strings within clean files, and saving time by automatically identifying common characteristics of malware samples. This tool helps in writing precise YARA rules for malware detection and hunting based on custom databases of malicious and clean files.

FEATURES

ALTERNATIVES

A deserialization payload generator for .NET formatters

Redexer is a reengineering tool for Android app binaries with features like RefineDroid and Dr. Android.

Yara module for Node.js

Automates the process of preparing Android APK files for HTTPS inspection

A library for checking potentially malicious files and archives using YARA and making a decision about their harmfulness.

A collection of YARA rules for public use, built from intelligence profiles and file work.

YARA rules for ProcFilter to detect malware and threats

A tutorial on setting up a virtual ARM environment, reversing ARM binaries, and writing basic exploits for ARM using the trafman challenge of rwthCTF as an example.