Checksec
Checksec is a bash script to check the properties of executables like PIE, RELRO, Canaries, ASLR, Fortify Source.
Yara mode for GNU Emacs to edit Yara related files. This mode provides syntax highlighting, indentation, and other features for editing Yara rules. How to use YARA Language Server: 1. Install the `yls` from https://github.com/avast/yls 2. Run `pip install -U yls-yara` to install the YARA Language Server. 3. Set up a custom language server in the `init.el` file. Example setup: (with-eval-after-load 'lsp-mode (add-to-list 'lsp-language-id-configuration '(yara-mode . "yara")) (lsp-register-client (make-lsp-client :new-connection (lsp-stdio-connection "yls") :activation-fn (lsp-activate-on "yara") :server-id 'yls)))
Checksec is a bash script to check the properties of executables like PIE, RELRO, Canaries, ASLR, Fortify Source.
A deserialization payload generator for .NET formatters
Discontinued project for file-less persistence, attacks, and anti-forensic capabilities on Windows 7 32-bit systems.
A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.
A collection of Yara signatures for identifying malware and other threats
A tool for deep analysis of malicious files using ClamAV and YARA rules, with features like scoring suspect files, building visual tree graphs, and extracting specific patterns.