16 open source projects by CheckPointSW

Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into categories for ease of searching and understanding. Also provided are code samples, signature recommendations and countermeasures within each category for the described techniques.

Scout - Instruction based research debugger (a poor man's debugger)

Check Point API Python Development Kit simplifies the use of the Check Point Management APIs.

Check Point CloudGuard Network Security repository containing solution templates, Terraform templates, tools and scripts for deploying and configuring CloudGuard Network Security products.

Karta - source code assisted fast binary matching plugin for IDA

A (hopefully) generic unpacker for packed Android apps.

InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.

Check Point ExportImportPolicyPackage tool enables you to export a policy package from a Management database to a .tar.gz file, which can then be imported into any other Management database. The tool is supported for version R80.10 and above.

Anti-Debug encyclopedia contains methods used by malware to verify if they are executed under debugging. It includes the description of various anti-debug tricks, their implementation, and recommendations of how to mitigate the each trick.

Check Point SmartMove tool enables you to convert 3rd party database with firewall security policy and NAT to Check Point database.

This Ansible collection provides control over a Check Point Management server using Check Point's web-services APIs.

ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solutions that clash with standard anti-debug methods.

Leverage the Check Point’s threat intelligence to enrich your SIEM and SOAR solutions and to secure your business applications and websites by using simple RESTful APIs.

Ansible module provides control over a Check Point Management server using Check Point's web-services APIs.

Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling infrastructure

Deploy Kubernetes Helm Charts for Check Point CloudGuard