Add FOR610 tool/workflow knowledge base and data pipeline

Build comprehensive malware analysis knowledge base from 3 sources: - SANS FOR610 course: 120 tools, 47 labs, 15 workflows, 27 recipes - REMnux salt-states: 340 packages parsed from GitHub - REMnux docs: 280+ tools scraped from docs.remnux.org Master inventory merges all sources into 447 tools with help tiers (rich/standard/basic). Pipeline generates: tools.db (397 entries), 397 cheatsheets with multi-tool recipes, 15 workflow guides, 224 TLDR pages, and coverage reports. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-28 17:38:15 +01:00
parent 06ebb09ab0
commit f3ccc09c3d
663 changed files with 36339 additions and 1 deletions
@@ -0,0 +1,24 @@
+# apktool
+# Decompile and recompile Android APK files — extract resources, smali code, and manifest
+# Docs: https://docs.remnux.org/discover-the-tools/statically+analyze+code/android
+
+% android, apk, decompilation, resources
+
+# Basic usage
+apktool d <app.apk> -o output/
+
+# Output to file
+apktool b output/ -o rebuilt.apk
+
+
+# --- Recipes (multi-tool chains) ---
+
+# >> Quick APK Triage
+# Check for packers/obfuscators
+apkid <app.apk>
+# Decompile to smali + resources
+apktool d <app.apk> -o output/
+# Check permissions
+grep 'uses-permission' output/AndroidManifest.xml
+# Decompile to Java source
+jadx <app.apk> -d src/