Fadavvi / Yara-Repo
A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-systems.com/
☆26Updated last year
Alternatives and similar repositories for Yara-Repo:
Users that are interested in Yara-Repo are comparing it to the libraries listed below
- Library of threat hunts to get any user started!☆42Updated 4 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆54Updated last month
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- Remote access and Antivirus Logging Database☆42Updated 10 months ago
- A collection of tips for using MISP.☆74Updated 2 months ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆30Updated 2 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆51Updated 4 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆32Updated last month
- CarbonBlack EDR detection rules and response actions☆71Updated 5 months ago
- yara detection rules for hunting with the threathunting-keywords project☆106Updated this week
- ☆29Updated this week
- ShellSweeping the evil.☆52Updated 8 months ago
- User Feedback Space of #MitreAssistant☆37Updated last year
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆32Updated 3 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆37Updated last year
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆84Updated 3 weeks ago
- Jupyter Notebooks for Cyber Threat Intelligence☆36Updated last year
- A home for detection content developed by the delivr.to team☆67Updated 3 weeks ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆70Updated 3 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆51Updated last year
- ☆20Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆51Updated 2 months ago
- IOC Collection 2022☆57Updated last year
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆33Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆91Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- pySigma Splunk backend☆36Updated last week
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆52Updated last year