This website uses cookies to enhance your browsing experience. Please note that by continuing to use this site you consent to the terms of our Privacy Notice.

ACCEPT
Experienced a Breach?

NEED IMMEDIATE ASSISTANCE?
Contact Us for Pre and Post Incident Response Services

855.276.9347

Learn More

Community Tools

tool-scanner

CROWDSTRIKE SHELLSHOCK SCANNER

Network Scan for Bash Vulnerability

CrowdStrike ShellShock Scanner is a free tool aimed to help alert you to the presence of systems on your network that are vulnerable to the Bash ShellShock vulnerability.

Supported Operating Systems: The tool runs on both 32 bit and 64 bit versions of Windows from XP and above.

Download    Integrity Hashes

CSShellShockScanner.zip

  • MD5 bdf05a8bbb39ad67c434fda9323a7766
  • SHA1 0a546035a9dc549371a5d642d45f73b5304cbc5a
  • SHA256 f007ecdbdb24e50a0de36671bb53e84be3939831878e5ce421d105f14c5b4ca3

CSShellShockScanner.exe

  • MD5 de88047f84f649dc6f024e3e2a87c1a6
  • SHA1 9eceb6c27d24c1cfec06cfc139cfac095c850c50
  • SHA256 dd58d270120101ee7e80856e6fc4ad34f3771e041d44a612c6cb127ae5119d1f
tool-heartbleed

CROWDSTRIKE HEARTBLEED SCANNER

Network Scan for OpenSSL Vulnerability

CrowdStrike Heartbleed Scanner is a free tool aimed to help alert you to the presence of systems (such as web servers, VPNs, secure FTP servers, databases, routers, etc.) on your network that are vulnerable to the OpenSSL Heartbleed vulnerability.

Supported Operating Systems: The tool runs on both 32 bit and 64 bit versions of Windows from XP and above.

Download    Integrity Hashes

CSHeartbleedScanner.zip

  • MD5 34b00450b9ba1a2bd394d501c220f7ae
  • SHA1 bce7cfa6e40960bca271c4012a5ee3b3d62bebdb
  • SHA256 c59dc07c27a8ad03e5ea5cab3a892fca64cbf5e5f0f2db35b5e266f4dbff96eb

CSHeartbleedScanner.exe

  • MD5 6de14263355cb908315239150e6572a4
  • SHA1 008ed2e7ab633f5c306d5f214031098ac9216a03
  • SHA256 cd3106731e36a8bf68a7903c98d52b6fc1a7a1c3565c04fd512aa8ac9b0e7486
tool-response

CROWD RESPONSE

Static Host Data Collection Tool

Crowd Response is a lightweight Windows console application designed to aid in the gathering of system information for incident response and security engagements. The application contains numerous modules, each of them invoked by providing specific command line parameters to the main application. Modules are all built into the main application in C++ language utilizing the Win32 API to achieve their functionality.

Crowd Response results may be viewed in a variety of ways, particularly when leveraging CrowdStrike’s CRconvert. By default, output from Crowd Response is provided in an XML file. CRconvert will flatten this XML to CSV, TSV or HTML, if desired. The various format options were created to support the different needs and analysis preferences of the end user.

Supported Operating Systems: The tool runs on 32 bit and 64 bit versions of Windows from XP and above.

Download    INTEGRITY HASHES

CrowdResponse.zip

  • MD5 76b8b6032924610790a4efb381a0f6a7
  • SHA1 d913fbe9bdf95d05480b1793e2b0ed92af584536
  • SHA256 590144a42035c5fb07716b1beee823fad99877e3d14000e3242aae21f3c290a1
tool-tortilla

TORTILLA

Anonymous Security Research through Tor

Tortilla is an open source tool that allows users to securely, anonymously, and transparently route all TCP/IP and DNS traffic through Tor, regardless of the client software, and without relying on VPNs or additional hardware or virtual machines.

Supported Operating Systems: The tool runs on 32 bit and 64 bit versions of Windows from XP and above.

Download    Source Code    Integrity Hashes

Tortilla_v1.1.0_Beta.zip

  • SHA256 150eb477cd8a48daa792fbb610345e9c0aa981597106a02db03b06e71f56b586
tool-detox

CROWD DETOX

Decompilation Deobfuscator

The CrowdDetox plugin for Hex-Rays automatically removes junk code and variables from Hex-Rays function decompilations. This allows security researchers to analyze malware more easily, efficiently, and effectively.

Supported Operating Systems: This distribution comes with pre-built versions of the plugin for Windows, Mac OS, and Linux.

Download    Source Code    Integrity Hashes

CrowdDetox_v1.0.2_Beta.zip

  • SHA256 6aae11f34ed47d502754e274aef464bb8c4b0196f4117f0bc70db70f072039eb
tool-inspect

CROWD INSPECT

Host-Based Process Inspection

CrowdInspect is a free community tool for Microsoft Windows systems that is aimed to help alert you to the presence of potential malware are on your computer that may be communicating over the network. It is a host-based process inspection tool utilizing multiple sources of information to detect untrusted or malicious network-active process. The tool is leveraging intelligence from VirusTotal, Web of Trust (WOT), and Team Cymru’s Malware Hash Registry.

Supported Operating Systems: The tool runs on both 32 bit and 64 bit versions of Windows from XP and above.

CrowdInspect. Version 1.0.0.3:

  • CrowdInspect now analyzes all processes, not just those communicating over the network. Uncheck the TCP and UDP buttons to see only those processes not communicating on the network.
  • Bug fixes, including better parsing of VirtusTotal results.

Download    Integrity Hashes

CrowdInspect.zip

  • MD5 2c6e6c901c794ddbef4a79cdf1422429
  • SHA1 a4e34d1f65f2cab3fb3d9372a16b6e268b425be3
  • SHA256 c67116a080c257e72c6d11d0d48eb7d1297addd6ea8051801943f5d7b94c6e50

CrowdInspect.exe

  • MD5 844c9c8c4c795476e7289baacfceaa2d
  • SHA1 b072d1e37b61d01d9e0b3d997aab3d54794078ad
  • SHA256 441348a1a9c76a01b6da1385c4ca283646b36a10c3c9d9cb14c3fce7ae07107c