EFForg / yayaLinks
Yet Another Yara Automaton - Automatically curate open source yara rules and run scans
☆281Updated last year
Alternatives and similar repositories for yaya
Users that are interested in yaya are comparing it to the libraries listed below
Sorting:
- User guide of MISP☆268Updated 5 months ago
- Yara Rule Analyzer and Statistics☆375Updated 2 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆375Updated 3 years ago
- Simple Bash IOC Scanner☆736Updated 3 years ago
- MISP trainings, threat intel and information sharing training materials with source code☆408Updated last week
- Set of Yara rules for finding files using magics headers☆137Updated 4 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆246Updated 3 years ago
- simple YARA-based IOC scanner☆169Updated 3 months ago
- A set of Zeek scripts to detect ATT&CK techniques.☆592Updated 11 months ago
- A framework for orchestrating forensic collection, processing and data export☆315Updated last week
- A live dashboard for a real-time overview of threat intelligence from MISP instances☆202Updated last year
- DFIRTrack - The Incident Response Tracking Application☆498Updated 9 months ago
- Online hash checker for Virustotal and other services☆825Updated 2 months ago
- A query aggregator for OSINT based threat hunting☆897Updated this week
- An open source framework for enterprise level automated analysis.☆395Updated 2 years ago
- Zeek-Formatted Threat Intelligence Feeds☆365Updated this week
- Awesome VirusTotal Intelligence Search Queries☆332Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- Malware repository component for samples & static configuration with REST API interface.☆354Updated last month
- Cortex Analyzers Repository☆460Updated last week
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆501Updated 2 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆314Updated last month
- MISP Docker (XME edition)☆282Updated last year
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆337Updated 2 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.☆276Updated last week
- ☆173Updated 11 months ago
- A modular OSINT honeypot for blue teamers☆334Updated 2 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆261Updated 2 years ago