Category: Forensics

YARA rule analyzer

yaraQA: YARA rule analyzer

yaraQA YARA rule Analyzer to improve rule quality and performance Why? YARA rules can be syntactically correct but still dysfunctional. yaraQA tries to find and report these issues to the...

Deobfuscate Log4Shell payloads

Ox4Shell: Deobfuscate Log4Shell payloads

Ox4Shell Deobfuscate Log4Shell payloads with ease. Since the release of the Log4Shell vulnerability (CVE-2021-44228), many tools were created to obfuscate Log4Shell payloads, making the lives of security engineers a nightmare....

command-line toolkit

dismember: scan the memory of all processes

Dismember Dismember is a command-line toolkit for Linux that can be used to scan the memory of all processes (or particular ones) for common secrets and custom regular expressions, among...