Antivirus and other malware identification tools
- Wrapper for a variety of tools for reporting on Windows PE files.
- A scalable distributed file analysis framework.
- An open source, serverless AWS pipeline that scans and alerts on uploaded files based on a set of YARA rules.
- Local Linux rootkit detection.
- Open source antivirus engine.
- A program for determining types of files.
- Packer, compressor detector, unpack info, internal exe tools.
- Read, write and edit file metadata.
- Modular, recursive file scanning solution.
- A Single Library Parser to extract meta information,static analysis and detect macros within the files.
- Compute digest hashes with a variety of algorithms.
- Windows shell extension to compute hashes with a variety of algorithms.
- Host based scanner for IOCs.
- Catalog and compare malware at a function level.
- Static analyzer for PE executables.
- Static analysis framework.
- Modular file scanning/analysis framework
- A tool for looking up hashes in NIST's National Software Reference Library database.
- A cross-platform Python alternative to PEiD.
- Reversing tool for PE files.
- A multiplatform toolkit to work with PE files, providing feature-rich tools for proper analysis of suspicious binaries.
- Detect Linux rootkits.
- Compute fuzzy hashes.
- Python script for easy searching of the database.
- File identifier.
- A Tool to Analyze Virustotal Reports to Find Potential False Positives based on similarity of Detection Naming.
- Pattern matching tool for analysts.
- Generate yara rules based on a set of malware samples. Also contains a good strings DB to avoid false positives.
- A simple tool to yara match the file against various yara rules to find the indicators of suspicion
- Wrapper for a variety of tools for reporting on Windows PE files.
- A scalable distributed file analysis framework.
- An open source, serverless AWS pipeline that scans and alerts on uploaded files based on a set of YARA rules.
- Local Linux rootkit detection.
- Open source antivirus engine.
- A program for determining types of files.
- Packer, compressor detector, unpack info, internal exe tools.
- Read, write and edit file metadata.
- Modular, recursive file scanning solution.
- A Single Library Parser to extract meta information,static analysis and detect macros within the files.
- Compute digest hashes with a variety of algorithms.
- Windows shell extension to compute hashes with a variety of algorithms.
- Host based scanner for IOCs.
- Catalog and compare malware at a function level.
- Static analyzer for PE executables.
- Static analysis framework.
- Modular file scanning/analysis framework
- A tool for looking up hashes in NIST's National Software Reference Library database.
- A cross-platform Python alternative to PEiD.
- Reversing tool for PE files.
- A multiplatform toolkit to work with PE files, providing feature-rich tools for proper analysis of suspicious binaries.
- Detect Linux rootkits.
- Compute fuzzy hashes.
- Python script for easy searching of the database.
- File identifier.
- A Tool to Analyze Virustotal Reports to Find Potential False Positives based on similarity of Detection Naming.
- Pattern matching tool for analysts.
- Generate yara rules based on a set of malware samples. Also contains a good strings DB to avoid false positives.
- A simple tool to yara match the file against various yara rules to find the indicators of suspicion