Yara Station
Management portal for LoKi scanner with centralized database for scanning activities.
The rules in this YARA repository are intended to be compatible with ProcFilter. To use this repository configure ProcFilter's INI file to point to this repository location or copy this repository's contents to ProcFilter's localrules directory. These rules are licensed under the MIT license located here.
Management portal for LoKi scanner with centralized database for scanning activities.
A library for checking potentially malicious files and archives using YARA and making a decision about their harmfulness.
Repository of TRISIS/TRITON/HatMan malware samples and decompiled sources targeting ICS Triconex SIS controllers.
Checksec is a bash script to check the properties of executables like PIE, RELRO, Canaries, ASLR, Fortify Source.
A tool to dump ODIN3 messages into files for reverse-engineering
VMCloak is a tool for creating and preparing Virtual Machines for Cuckoo Sandbox.