YARA Matches Correspondance Array (YMCA)

Create deceptive webpages to deceive and redirect attackers away from real websites by cloning them.

YMCA: A Tool for Threat Hunters and Security Analysts

YMCA is a tool specifically designed for threat hunters, incident responders, and security analysts. It helps users visually display the connections between a YARA ruleset and a collection of samples, focusing solely on the strings section of the rules. To get started, download and run the standalone binary on either Linux or Windows. You can then access the tool through localhost:4449.

Use cases include gaining a comprehensive overview of coverage

Use cases include obtaining a complete view of how well a new rule is covered and assessing the accuracy of an existing rule at the beginning of a new campaign.

Other AI Tools

OWASP Foundation

Advanced vulnerability assessment tool for gaining visibility and preventing cyber attacks.

Details

OWASP Joomla Vulnerability Scanner

An OSINT tool that generates username lists for companies on LinkedIn for social engineering attacks or security testing purposes.

Details

OWASP Honeypot

Apache 2 based honeypot for detecting and blocking Struts CVE 2017-5638 exploit with added support for content disposition filename parsing vulnerability.

Details