CIRCL / factual-rules-generator
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
☆76Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for factual-rules-generator
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- YARA rule analyzer to improve rule quality and performance☆93Updated 11 months ago
- ☆15Updated 2 years ago
- ☆37Updated 2 years ago
- ☆43Updated last year
- Carbon Black Response IR tool☆53Updated 3 years ago
- Automatic detection engineering technical state compliance☆50Updated 4 months ago
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆48Updated 6 months ago
- Tweettioc Splunk App☆20Updated 4 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆65Updated 2 years ago
- Standardized Malware Analysis Tool☆51Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- Malware similarity platform with modularity in mind.☆76Updated 3 years ago
- ☆34Updated last year
- ☆41Updated 7 months ago
- Random hunting ordiented yara rules☆95Updated last year
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 2 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 2 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆80Updated 2 years ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Collection of YARA signatures from individual research☆42Updated 11 months ago