Summary

• Adds malware-check to the Security & Systems section in alphabetical order.
• malware-check is an enterprise-grade static and dynamic analysis tool for detecting malicious code, suspicious binaries, and privacy violations with YARA rules, Docker sandboxing, and SARIF reporting.

What problem it solves

Security engineers and developers need automated malware detection integrated into their CI/CD and code review workflows. malware-check provides both static analysis (YARA rules, string analysis, entropy detection) and dynamic analysis (Docker sandboxing) with standardized SARIF output for integration with GitHub Code Scanning and other SARIF-compatible tools.

Who uses this

• Security engineers performing malware triage
• DevSecOps teams integrating malware scanning into CI/CD pipelines
• Incident responders analyzing suspicious files

Checklist

• Real use case (active security tooling)
• Added in alphabetical order within Security & Systems
• Follows existing entry format
• No duplicates in existing skills