Static and dynamic analysis tool for detecting malicious code, suspicious binaries, and privacy violations.

Static and dynamic analysis tool for detecting malicious code, suspicious binaries, and privacy violations. Analyzes source code, compiled executables (.exe, .dll, .elf), macOS bundles (.app, .dmg, .pkg), mobile apps (.apk, .ipa), and application packages with YARA rules, Docker behavioral sandboxing, MobSF mobile analysis, payload deobfuscation, and multi-format reporting (JSON, HTML, SARIF).

Related contents:

• #72 - Microsoft et Adobe corrigent une vulnérabilité déjà exploitée @ Erreur 403 :fr:.

Scan your dev machine for AI agents, MCP servers, IDE extensions, and suspicious packages - in seconds.

Developer machines are the new attack surface. They hold high-value assets — GitHub tokens, cloud credentials, SSH keys — and routinely execute untrusted code through dependencies and AI-powered tools. Recent supply chain attacks have shown that malicious VS Code extensions can steal credentials, rogue MCP servers can access your codebase, and compromised npm packages can exfiltrate secrets.

Related contents:

• #72 - Microsoft et Adobe corrigent une vulnérabilité déjà exploitée @ Erreur 403 :fr:.

Unified Security Platform from Code to Runtime.

Protect against malicious code installed via npm, yarn, pnpm, npx, and pnpx with Aikido Safe Chain. Free to use, no tokens required.

• Aikido Safe Chain @ GitHub.

Fast file upload security for Node.js

🔒 Malware scanning • YARA integration • ZIP bomb protection • Express/Koa/Next.js adapters • Private by design.

• pompelmi @ GitHub.

Free Malware Scanner for Linux Servers.

Find out what’s hiding on your server, absolutely free. Your first step to a secure server starts here.

Related contents:

• ImunifyAV - Le scanner qui exécute les malwares @ Korben :fr:.

A lightweight security threat scanner intended to make malware detection more accessible and efficient.

Lenspect is a lightweight security threat scanner powered by VirusTotal.

• Lenspect @ Flathub.

Related contents:

• Episode 637: Chris’ Smart Home Disaster @ Linux Unplugged.

PandoraBox is a USB scanning station designed to detect and remove malware from USB disks. It is based on Pandora by CIRCL and is distributed under the GPLv3 license.

Related contents:

• Episode #513 consacré à Mercator @ NoLimitSecu :fr:.

RansomLord is a proof-of-concept Anti-Ransomware exploitation tool that automates the creation of PE files, used to compromise ransomware pre-encryption.

• RansomLord, un outil open source capable de piéger les ransomwares ! @ IT-Connect :fr:.
• RansomLord v3 – Un outil open source qui exploite les failles des ransomwares @ Korben :fr:.

USB virus cleaning station. Retrieve untrusted files from USB (via keysas-io) or over the network.

Production-ready fullstack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) running inside a container. Only configuration files, no SQL database. Keep it simple and versioned. Easy to deploy and upgrade. Documentation via MkDocs.

complete mail server SMTP + IMAP + POP3 + Antispam + Antivirus Web administration + Web email ...on your server in ~5 minutes