Fadavvi / Yara-Repo
A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-systems.com/
☆26Updated last year
Related projects ⓘ
Alternatives and complementary repositories for Yara-Repo
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Library of threat hunts to get any user started!☆40Updated 4 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆18Updated last year
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- IOC Collection 2022☆55Updated last year
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆29Updated 2 years ago
- Hunt malware with Volatility☆47Updated 6 months ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆65Updated this week
- A home for detection content developed by the delivr.to team☆59Updated last week
- Remote access and Antivirus Logging Database☆41Updated 6 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆49Updated 7 months ago
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆15Updated 2 months ago
- Script to automate Linux live evidence collection☆27Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆93Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆68Updated last year
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆22Updated 6 months ago
- ShellSweeping the evil.☆52Updated 5 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆47Updated 3 weeks ago
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- ☆85Updated 9 months ago
- USN Journal full path builder☆36Updated 2 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- A collection of tips for using MISP.☆74Updated 7 months ago
- Incident response teams usually working on the offline data, collecting the evidence, then analyze the data☆44Updated 2 years ago
- ☆41Updated 7 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago
- JPCERT/CC public YARA rules repository☆104Updated 5 months ago