LSE toolsLSE toolsbamfdetect (447)bamfdetect (447)

Tool and Usage

Project details
Programming languagePython
AuthorBrian Wallace
Latest release1.6.12 []

Project health

This score is calculated by different factors, like project age, last release date, etc.

Why this tool?

With bamfdetect, malware and bots can be analyzed. It identifies and extracts information and returns data in JSON format.

How it works

Files are loaded into RAM, and then any applicable preprocessors are applied. By using YARA signatures, the tool tries to find any matches. The related module for each type of malware can then extract useful details.

Usage and audience

bamfdetect is commonly used for malware analysis or malware scanning. Target users for this tool are security professionals.


  • Command line interface
  • JSON output supported

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:


  • + The source code of this software is available

Author and Maintainers

Bamfdetect is under development by Brian Wallace.


Supported operating systems

Bamfdetect is known to work on Linux.


Several dependencies are required to use bamfdetect.

  • pbkdf2
  • pefile
  • pycrypto
  • rarfile
  • yara

bamfdetect alternatives

Similar tools to bamfdetect:



MultiScanner is a modular file scanning and analysis framework. It can be used to scan files and detect malware or other suspicious traces. With the help of the modules, it can be extended to provide more details about a file.



There are never enough tools to analyze malware, right? SSMA might be one of those tools that to add to your malware analysis toolbox.



YARA is a security tool to identify and classify malware samples and often used by malware researchers. Learn how it works in this review.

All bamfdetect alternatives

Found an improvement? Help the community by submitting an update.

Related tool information


This tool is categorized as a Linux malware analysis tool.