Yara_fn IDAPython script | CyberSecTools

Yara_fn IDAPython script

0 (0)

A YARA rule generator for IDA Pro that matches basic blocks of the current function. It masks out relocation bytes and ignores jump instructions. If python-yara is installed, it validates that the generated rule matches at least one segment in the current file.

Malware Analysis

Free

ida-pro yara binary-analysis binary-security rule-generation

ALTERNATIVES

JD-GUI

0 (0)

Standalone graphical utility for viewing Java source codes from ".class" files.

Malware Analysis

Free

binary-security java file-analysis binary-analysis decompiler java-decompiler

smali/baksmali

0 (0)

Assembler/disassembler for the dex format used by Dalvik, Android's Java VM implementation.

Malware Analysis

Free

smali disassembler dex

base64_substring

0 (0)

A tool for malware analysts to search through base64-encoded samples and generate yara rules.

Malware Analysis

Free

binary-security file-analysis hex-dump file-patching binary-conversion yara

dex2jar

0 (0)

Tools for working with Android .dex and Java .class files, including dex-reader/writer, d2j-dex2jar, and smali/baksmali.

Malware Analysis

Free

java smali dex dalvik

extended-xss-search

0 (0)

A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

Malware Analysis

Free

web-security vulnerability-scanning xss xss-scanner

PLASMA

0 (0)

PLASMA is an interactive disassembler with support for various architectures and formats, offering a Python API for scripting.

Malware Analysis

Free

binary-security file-analysis hex-dump binary-conversion binary-analysis assembly disassembler