Neo23x0/awesome-yara external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Neo23x0/awesome-yara

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Neo23x0/awesome-yara)

Close

Neo23x0 / awesome-yaraView on GitHubMore

• External links
• Readme badge

A curated list of awesome YARA rules, tools, and people.

☆33Oct 26, 2023Updated 2 years ago

Alternatives and similar repositories for awesome-yara

Users that are interested in awesome-yara are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Neo23x0 / atomic-threat-coverage

  View on GitHub
  Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.
  ☆23Dec 13, 2018Updated 7 years ago
• Neo23x0 / YARA-rules

  View on GitHub
  Some YARA rules i will add from time to time
  ☆12May 31, 2019Updated 6 years ago
• mandiant / pivy-report

  View on GitHub
  Poison Ivy Appendix/Extras
  ☆18Aug 21, 2013Updated 12 years ago
• Neo23x0 / cyber-chef-recipes

  View on GitHub
  Recipes for GCHQ's CyberChef Web App
  ☆40Nov 15, 2018Updated 7 years ago
• Neo23x0 / ti-falsepositives

  View on GitHub
  A collection of typical false positive indicators
  ☆56Dec 5, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• CyberDefenses / CDI_yara

  View on GitHub
  A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
  ☆18Sep 10, 2023Updated 2 years ago
• zeflow / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆12Jul 1, 2021Updated 4 years ago
• metac0rtex / Office-Macro-Generator

  View on GitHub
  Python based Office Macro Generator. Also does rudamentary obfuscation.
  ☆12Jun 6, 2016Updated 9 years ago
• CofenseLabs / Coronavirus-Phishing-Yara-Rules

  View on GitHub
  Repository of Cofense Coronavirus Phishing Yara Rules (details can be found here: https://cofense.com/solutions/topic/coronavirus-infocen…
  ☆10Jul 7, 2020Updated 5 years ago
• CGCFAD / WDATP-Advanced-Hunting

  View on GitHub
  Windows Defender ATP - Advanced Hunting Queries
  ☆22Apr 12, 2018Updated 8 years ago
• NextronSystems / thor_attck

  View on GitHub
  THOR MITRE ATT&CK Framework Coverage
  ☆26Jun 15, 2020Updated 5 years ago
• Neo23x0 / yaraQA

  View on GitHub
  YARA rule analyzer to improve rule quality and performance
  ☆113Jan 18, 2026Updated 3 months ago
• tg12 / OpenMailRelayFuzzer

  View on GitHub
  Fuzzer for finding Open Mail Relays
  ☆14Oct 21, 2020Updated 5 years ago
• mohlcyber / OpenDXL-ATD-MAR-Elasticsearch

  View on GitHub
  Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana
  ☆10Aug 17, 2018Updated 7 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• Neo23x0 / panopticon

  View on GitHub
  A YARA Rule Performance Measurement Tool
  ☆61Feb 26, 2024Updated 2 years ago
• hslatman / awesome-threat-detection

  View on GitHub
  A curated list of awesome threat detection and hunting resources
  ☆10Mar 23, 2018Updated 8 years ago
• zodiacon / ndcoslo2019

  View on GitHub
  NDC Oslo 2019 slides and demos
  ☆33Nov 26, 2020Updated 5 years ago
• siemucsm / siemucsm

  View on GitHub
  SIEM USE Case Selection Methodology
  ☆17Sep 18, 2020Updated 5 years ago
• aniketdvd / webams

  View on GitHub
  WebAMS is an Open Source web application for reporting and resolving incidents or tickets
  ☆10Dec 11, 2022Updated 3 years ago
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• plyara / plyara

  View on GitHub
  Parse YARA rules and operate over them more easily.
  ☆196Feb 6, 2025Updated last year
• Neo23x0 / ImpHash-Generator

  View on GitHub
  PE Import Hash Generator
  ☆79Jul 17, 2017Updated 8 years ago
• aldonin / SIEM

  View on GitHub
  Security information and event management, masters's diploma
  ☆10Aug 3, 2015Updated 10 years ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• Neo23x0 / signature-base

  View on GitHub
  YARA signature and IOC database for my scanners and tools
  ☆2,917Updated this week
• reed1713 / ELAT

  View on GitHub
  Event Log Analysis Tools
  ☆31Sep 27, 2016Updated 9 years ago
• Neo23x0 / xorex

  View on GitHub
  XOR Key Extractor
  ☆51Aug 10, 2024Updated last year
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• MISP / vintage-misp-workbench

  View on GitHub
  MISP Workbench
  ☆28Oct 19, 2016Updated 9 years ago
• felixe / idsEventGenerator

  View on GitHub
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆23Nov 9, 2018Updated 7 years ago
• Neo23x0 / vti-dorks

  View on GitHub
  Awesome VirusTotal Intelligence Search Queries
  ☆333May 16, 2023Updated 2 years ago
• ParrotSec / parrot-tools

  View on GitHub
  ☆82Feb 4, 2026Updated 2 months ago
• jshlbrd / threat-hunting-pocket-guide

  View on GitHub
  pocket guide for core threat hunting concepts
  ☆23May 6, 2020Updated 5 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• engineers-hub-ltd-in-house-project / slack-claude-code-integration

  View on GitHub
  Slack integration for Claude Code using MCP (Model Context Protocol). Enable your team to use Claude Code collaboratively through Slack.
  ☆11Jun 30, 2025Updated 9 months ago
• re-fox / documentation

  View on GitHub
  ☆13Nov 10, 2020Updated 5 years ago
• pidydx / PyIOCe

  View on GitHub
  Python OpenIOC Editor
  ☆18Dec 28, 2015Updated 10 years ago
• codelibs / docker-codesearch

  View on GitHub
  Code Search on Fess
  ☆11Nov 2, 2024Updated last year
• Silv3rHorn / 4n6_misc

  View on GitHub
  Miscellaneous Scripts
  ☆17Sep 11, 2020Updated 5 years ago
• P4T12ICK / ypsilon

  View on GitHub
  Automated Use Case Testing
  ☆171May 1, 2018Updated 7 years ago
• lprat / logstash-plugins

  View on GitHub
  My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …
  ☆10Jul 26, 2019Updated 6 years ago