Detection and Classification

来源：互联网发布：淘宝已评价怎么删除编辑：程序博客网时间：2024/06/04 13:28

AnalyzePE – Wrapper for a variety of tools for reporting on Windows PE files.
chkrootkit – Local Linux rootkit detection.
ClamAV – Open source antivirus engine.
ExifTool – Read, write and edit file metadata.
hashdeep – Compute digest hashes with a variety of algorithms.
MASTIFF – Static analysis framework.
MultiScanner – Modular file scanning/analysis framework
nsrllookup – A tool for looking up hashes in NIST’s National Software Reference Library database.
packerid – A cross-platform Python alternative to PEiD.
PEiD – Packer identifier for Windows binaries.
PEV – A multiplatform toolkit to work with PE files, providing feature-rich tools for proper analysis of suspicious binaries.
Rootkit Hunter – Detect Linux rootkits.
ssdeep – Compute fuzzy hashes.
totalhash.py – Python script for easy searching of theTotalHash.com database.
TrID – File identifier.
YARA – Pattern matching tool for analysts.

0 0