Yara Decompressor Logo

Yara Decompressor

0
Free
Malware Analysis
Malware Analysis
Compression
Yara
Rule Engine
File Analysis
Binary Security
Visit Website

For when your malware samples are stored compressed, but you still want to run rules against them. Currently supports: GZip, BZip2, LZMA (XZ). Modules used: Go-Yara: https://github.com/hillu/go-yara, XZ: https://github.com/ulikunitz/xz. Motivation: I've had to test Yara rules with compressed malware on systems with or without Yara installed. Compiled statically against libyara for ease of use. Currently runs a rule file against a directory of files. Future thoughts: Support for files in Zip and Tar archives, password-protected Zip and 7z files, and testing common passwords.

FEATURES

ALTERNATIVES

Andor Logo
Andor

A blind SQL injection tool written in Golang

Free
Malware Analysis
Viper Logo
Viper

A binary analysis and management framework for organizing and analyzing malware and exploit samples, and creating plugins.

Free
Malware Analysis
Linx Logo
Linx

A tool that reveals invisible links within JavaScript files

Free
Malware Analysis
Android Malware Samples Logo
Android Malware Samples

Largest open collection of Android malware samples, with 298 samples and contributions welcome.

Free
Malware Analysis
The Anatomy of a Malicious Package Logo
The Anatomy of a Malicious Package

A detailed analysis of malicious packages and how they work

Free
Malware Analysis
ctf_import Logo
ctf_import

A library for running basic functions from stripped binaries cross platform.

Free
Malware Analysis
base64_substring Logo
base64_substring

A tool for malware analysts to search through base64-encoded samples and generate yara rules.

Free
Malware Analysis
Yara-Unprotect Logo
Yara-Unprotect

A collection of Yara rules for detecting malware evasion techniques

Free
Malware Analysis

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security