Screenshots

Example Usage

pipx install yaralyzer

# Scan against YARA definitions in a file:
yaralyze --yara-rules /secret/vault/sigmunds_malware_rules.yara lacan_buys_the_dip.pdf

# Scan against an arbitrary regular expression:
yaralyze --regex-pattern 'good and evil.*of\s+\w+byte' --regex-modifier wide the_crypto_archipelago.exe

# Scan against an arbitrary YARA hex pattern
yaralyze --hex-pattern 'd0 93 d0 a3 d0 [-] 9b d0 90 d0 93' one_day_in_the_life_of_ivan_cryptosovich.bin

See also

GH-Offset-Dumper

Free

Scan signatures and netvars. Dumps header files, cheat tables and ReClass files.…

Ghidra

Open Source Kali

NSA-developed software reverse engineering suite. Features a disassembler, decompiler, scripting (Ja…

AndKittyInjector

Open Source

Inject a shared library into a process using ptrace…

NebulaFD

Free

A work in progress, reimagined decompiler for Clickteam Fusion.…

omni

Open Source

A modern zero-allocation C++23 library for working with low-level Windows within user-space. Iterati…

hyper-reV

Open Source

memory introspection and reverse engineering hypervisor powered by leveraging Hyper-V…