yextend is a software designed to augment Yara by natively handling the inflation of archived content, allowing Yara to work on one file's payload even if it is buried within multiple levels of archived content. The tool passes the inflated content of each discovered resource to Yara for pattern matching based on a given set of rules. Software Credits: Yara by Victor M. Alvarez, License: https://raw.githubusercontent.com/VirusTotal/yara/master/COPYING, json.hpp by Niels Lohmann, License: https://raw.githubusercontent.com/nlohmann/json/develop/LICENSE.MIT. Note: A change was made to the original json.hpp for Yextend to compile successfully.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
A tool for reading Portable Executable (PE) files with detailed information about the file structure.
A powerful tool for detecting and identifying malware using a rule-based system.
A javascript malware analysis tool with backend code execution.
A collection of Yara rules for identifying malicious PEs with unique or suspicious PDB paths.
A PowerShell module for interacting with VirusTotal to analyze suspicious files and URLs.
Guide on emulating Raspberry Pi with QEMU and exploring Arm TrustZone research.