Yabin creates Yara signatures from executable code within malware by identifying rare functions through common function 'prologs' and using a whitelist to ignore common library functions. It's a prototype for finding similar malware samples.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
Define and validate YARA rule metadata with CCCS YARA Specification.
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
A tool to locally check for signs of a rootkit with various checks and tests.
A tool for injecting and loading executables with a focus on stealth techniques.
Holistic malware analysis platform with interactive sandbox, static analyzer, and emulation capabilities.
Binary Ninja is an interactive decompiler, disassembler, debugger, and binary analysis platform with a focus on automation and a clean GUI.