Files

T

tobias e62a14dafc Add markdown wiki with 473 pages and zk browser

Generate interlinked wiki from master inventory: 397 tool pages,
15 workflow pages, 27 recipe pages, 33 category pages, plus index.
All pages use [[wiki-links]] for cross-navigation between tools,
workflows, recipes, and categories (1782 links total).

Install zk for interactive browsing with fzf search, tag filtering,
and backlink discovery. Add 'fhelp wiki' command and Makefile target.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-28 19:50:36 +01:00

1.6 KiB

Raw Blame History

yara

Pattern matching tool for identifying and classifying malware using custom rules

Category: categories/examine-static-properties-general | Tier: Rich (FOR610) Docs: https://docs.remnux.org/discover-the-tools/examine+static+properties/general

Usage

yara-rules specimen.bin
yara rule.yar specimen.exe

Recipes

recipes/cobalt-strike-beacon-parse

Workflows

workflows/static-analysis-workflow — Step 5: Capability Detection
workflows/document-analysis-workflow — Step 6: Embedded Object Analysis
workflows/shellcode-analysis-workflow — Step 1: Shellcode Detection
workflows/email-analysis-workflow — Step 3: Attachment Triage
workflows/cobalt-strike-workflow — Step 1: Beacon Detection

tools/7-zip — Compress and decompress files using a variety of algorithms.
tools/binwalk — Analyze and extract embedded files and firmware images
tools/bulk-extractor — Extract interesting strings from binary files.
tools/clamav — Open-source antivirus — scan files for known malware signatu
tools/diec — Detect packers, compilers, and tools used to create executab

FOR610

Labs: 3.4 Sections: 3

#pattern-matching #classification #rules

1.6 KiB Raw Blame History

yara

Usage

Recipes

Workflows

Related Tools

FOR610

1.6 KiB

Raw Blame History