Alternatives and similar repositories for awesome-yara

Users that are interested in awesome-yara are comparing it to the libraries listed below

• YahooArchive / PyIOCe
  Python IOC Editor
  ☆65Updated 10 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 8 years ago
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 6 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 7 years ago
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆79Updated 8 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆41Updated 8 years ago
• Silv3rHorn / ArtifactExtractor
  Extract common Windows artifacts from source images and VSCs
  ☆63Updated 4 years ago
• teamdfir / concordance
  Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.
  ☆68Updated 5 years ago
• EC-DIGIT-CSIRC / VirusTotal-Tools
  ☆37Updated 8 years ago
• Foundstone / ExpertInvestigationGuides
  Expert Investigation Guides
  ☆51Updated 4 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆87Updated 2 years ago
• hiddenillusion / IR
  Some dfir stuff
  ☆30Updated 3 years ago
• nheijmans / malzoo
  Mass static malware analysis tool
  ☆95Updated 3 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆40Updated 5 years ago
• thirdeyeintelligence / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 8 years ago
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆63Updated 6 years ago
• S03D4-164 / Hiryu
  IOC Management and Visualization Tool
  ☆48Updated 3 years ago
• kevthehermit / YaraPcap
  Process HTTP Pcaps With YARA
  ☆108Updated 12 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 5 years ago
• jtmoran / parseRS
  Parses IE's Automatic Crash Recovery Files
  ☆16Updated 8 years ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆83Updated 4 years ago
• aboutsecurity / Talks-and-Presentations
  Slides and Other Resources from my latest Talks and Presentations
  ☆24Updated 3 months ago
• devgc / EventMonkey
  A Windows Event Processing Utility
  ☆47Updated 7 years ago
• grayfold3d / POSH-Triage
  Tools for parsing Forensic images
  ☆41Updated 7 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆149Updated 8 years ago
• mgreen27 / Invoke-LiveResponse
  Invoke-LiveResponse
  ☆149Updated 3 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• chaoticmachinery / frac_rift
  FRAC and RIFT
  ☆17Updated 6 years ago
• n3l5 / irFARTpull
  PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.
  ☆51Updated 7 years ago