Esteban Rojas Villar
Back to Projects

StringSifter

DFIRAI Security
View on GitHub

Overview

StringSifter uses machine learning to automatically rank and prioritize strings extracted from suspicious binaries, dramatically speeding up the malware triage process. Instead of manually sifting through thousands of strings, analysts get a ranked list highlighting the most operationally relevant indicators -- C2 URLs, registry keys, API calls, and encoded payloads.