StringSifter
StringSifter is a machine learning tool that automatically ranks strings based on their relevance for malware analysis. Quick Links: - Technical Blogpost - Learning to Rank Strings Output for Speedier Malware Analysis - Announcement Blogpost - Open Sourcing StringSifter - DerbyCon Talk - StringSifter: Learning to Rank Strings Output for Speedier Malware Analysis StringSifter releases on PyPi. Usage: StringSifter requires Python version 3.9 or newer. Installation: - pip install stringsifter - For development, use poetry: git clone https://github.com/mandiant/stringsifter.git cd stringsifter poetry install --with dev Running Unit Tests: To run unit tests from the StringSifter installation directory: poetry run tests -v Running from the Command Line: The pip install command installs two runnable scripts flarestrings and rank_strings into your python environment. When developing from source, use pipenv run flarestrings and pipenv run rank_strings. flarestrings mimics features of GNU binutils' strings, and rank_strings accepts piped input, for example: flarestrings <my_sample> | rank_strings rank_strings supports a number of
FEATURES
ALTERNATIVES
DroidBox is a tool for dynamic analysis of Android applications, providing insights into package behavior and security.
A project providing a low-cost ICS testbed with affordable hardware, instructions, and attacker scenarios to facilitate learning in industrial security.
A lightweight library for device identification and fingerprinting, written in Kotlin and 100% crash-free.
Scans SPF and DMARC records for issues that could allow email spoofing.
Android vulnerability analysis system with efficient scanning and high accuracy.
Runtime mobile exploration toolkit powered by Frida for assessing mobile app security without jailbreak.
Industrial control system automation and testing tool for SCADA security testing.
PINNED
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.