Free Tools

Here are a number of tools that I have produced for the community as part of my research efforts.

Tools

Name	Description
AmsiScanner	A tool for scanning files with the installed AV and finding AV signatures in malicious files in order to guide obfuscation.
YaraTools	This tool houses a large set of open-source YARA signatures that have been evaluated on a set of 284,181 legitimate and malicious portable executable files. The Get-YaraMatches PowerShell script can be used to scan new files and enrich the results with additional information such as information gain and the source text for the matching signature. This gives users more information to determine if a file is legitimate or malicious.

Name

Description

A tool for scanning files with the installed AV and finding AV signatures in malicious files in order to guide obfuscation.

YaraTools

This tool houses a large set of open-source YARA signatures that have been evaluated on a set of 284,181 legitimate and malicious portable executable files. The Get-YaraMatches PowerShell script can be used to scan new files and enrich the results with additional information such as information gain and the source text for the matching signature. This gives users more information to determine if a file is legitimate or malicious.

Tools

Share this: