yextend Logo

yextend

0
Free
Visit Website

yextend is a software designed to augment Yara by natively handling the inflation of archived content, allowing Yara to work on one file's payload even if it is buried within multiple levels of archived content. The tool passes the inflated content of each discovered resource to Yara for pattern matching based on a given set of rules. Software Credits: Yara by Victor M. Alvarez, License: https://raw.githubusercontent.com/VirusTotal/yara/master/COPYING, json.hpp by Niels Lohmann, License: https://raw.githubusercontent.com/nlohmann/json/develop/LICENSE.MIT. Note: A change was made to the original json.hpp for Yextend to compile successfully.

FEATURES

ALTERNATIVES

Code to prevent a managed .NET debugger/profiler from working.

A Unix-based tool that scans for rootkits and other malware on a system, providing a detailed report of the scan results.

YARA rules for ProcFilter to detect malware and threats

Redexer is a reengineering tool for Android app binaries with features like RefineDroid and Dr. Android.

A de-obfuscator for M/o/Vfuscator, a notorious obfuscator, designed to reverse the effects of M/o/Vfuscator's obfuscation.

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

Krakatau provides an assembler and disassembler for Java bytecode, supporting conversion, creation, examination, comparison, and decompilation of Java binaries.

A tool to help exploit XXE vulnerabilities by sending a crafted XML file to the server and parsing it to extract the data.