1 repositorio
Verification of binary executable authenticity and content scanning for malicious patterns.
Distinct from Execution Auditing: Candidates focus on command execution logs or AI audits; this is about PE file integrity and static malware scanning.
Explore 1 awesome GitHub repository matching security & cryptography · Executable Integrity Auditing. Refine with filters or upvote what's useful.
Velociraptor is a digital forensics and incident response platform, endpoint detection and response system, and visibility tool. It provides a query engine and remote forensic collector used to hunt for indicators of compromise and perform triage across a fleet of hosts. The system is distinguished by its specialized query language for interrogating host state and parsing binary files. It features a notebook environment that combines markdown documentation with executable query cells to standardize investigative workflows and enable collaborative reporting. The platform covers a wide range o
Parses Authenticode information from PE files and scans strings to detect malicious content.