-
Consider writing capa rules for `Xamarin.Android` applications:
> Xamarin.Android exposes the complete Android SDK for .NET developers. Build fully native Android apps using C# or F# in Visual Stud…
-
Hi, I appreciate the creation and idea of this blocklist. I was one of the first few people to recommend this list to Hagezi. I have forked this blocklist and am maintaining it with my own code to imp…
-
Does snake have ability to automatically produce yara rules for malware samples?
-
Suggestion is to have hash values included in the YARA object. This would allow correlation between malware samples and YARA rules that return true positives (and also false positives).
This would …
-
## Description
Identifies when suspicious content is extracted from a file and subsequently decompressed using the funzip utility.
Malware may execute the tail utility using the "-c" option to…
-
running pulled pork 0.7.4 generates a lot of duplicated rules. This happens even if the old rule file is deleted beforehand the newly generated rule file will already contain the duplicates. An exampl…
-
http://www.1001tracklists.com/tracklist/125364_sander-van-doorn-identity-371-best-of-2016-part-1-2016-12-30.html
.
Date…
-
I'm thinking what the QR Rules (Use Cases) are available for Synology NAS security events. These could either be default QR rules or maybe need creating in QR to utilise the Synology events.
I'm ab…
-
PPEE (puppy) is a Professional PE file Explorer for reversers, malware researchers and those who want to statically inspect PE files in more detail. Some of the features include:
- Very fast malwar…
R00ke updated
10 months ago