A curated list of awesome YARA rules, tools, and people.
☆33Oct 26, 2023Updated 2 years ago
Alternatives and similar repositories for awesome-yara
Users that are interested in awesome-yara are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Knowledge base of analytics designed to cover threats based on MITRE's ATT&CK.☆23Dec 13, 2018Updated 7 years ago
- Some YARA rules i will add from time to time☆12May 31, 2019Updated 7 years ago
- Poison Ivy Appendix/Extras☆18Aug 21, 2013Updated 12 years ago
- Recipes for GCHQ's CyberChef Web App☆40Nov 15, 2018Updated 7 years ago
- A collection of typical false positive indicators☆56Dec 5, 2020Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.☆18Sep 10, 2023Updated 2 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Python based Office Macro Generator. Also does rudamentary obfuscation.☆12Jun 6, 2016Updated 10 years ago
- Repository of Cofense Coronavirus Phishing Yara Rules (details can be found here: https://cofense.com/solutions/topic/coronavirus-infocen…☆10Jul 7, 2020Updated 5 years ago
- Windows Defender ATP - Advanced Hunting Queries☆22Apr 12, 2018Updated 8 years ago
- THOR MITRE ATT&CK Framework Coverage☆26Jun 15, 2020Updated 6 years ago
- YARA rule analyzer to improve rule quality and performance☆115Jun 4, 2026Updated 2 weeks ago
- Fuzzer for finding Open Mail Relays☆14May 16, 2026Updated last month
- Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana☆10Aug 17, 2018Updated 7 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Providing timelines based on OSINT Reports☆31Jun 21, 2023Updated 2 years ago
- A YARA Rule Performance Measurement Tool☆63Feb 26, 2024Updated 2 years ago
- A curated list of awesome threat detection and hunting resources☆10Mar 23, 2018Updated 8 years ago
- SIEM USE Case Selection Methodology☆17Sep 18, 2020Updated 5 years ago
- WebAMS is an Open Source web application for reporting and resolving incidents or tickets☆10Dec 11, 2022Updated 3 years ago
- ☆13Feb 6, 2018Updated 8 years ago
- Parse YARA rules and operate over them more easily.☆195Feb 6, 2025Updated last year
- PE Import Hash Generator☆79Jul 17, 2017Updated 8 years ago
- Security information and event management, masters's diploma☆10Aug 3, 2015Updated 10 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- YARA signature and IOC database for my scanners and tools☆2,970Jun 10, 2026Updated last week
- Event Log Analysis Tools☆31Sep 27, 2016Updated 9 years ago
- XOR Key Extractor☆51Aug 10, 2024Updated last year
- ☆36Jan 11, 2023Updated 3 years ago
- MISP Workbench☆28Oct 19, 2016Updated 9 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆23Nov 9, 2018Updated 7 years ago
- Awesome VirusTotal Intelligence Search Queries☆332May 16, 2023Updated 3 years ago
- ☆84Apr 28, 2026Updated last month
- pocket guide for core threat hunting concepts☆23May 6, 2020Updated 6 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Slack integration for Claude Code using MCP (Model Context Protocol). Enable your team to use Claude Code collaboratively through Slack.☆11Jun 30, 2025Updated 11 months ago
- ☆13Nov 10, 2020Updated 5 years ago
- Python OpenIOC Editor☆18Dec 28, 2015Updated 10 years ago
- Code Search on Fess☆11Nov 2, 2024Updated last year
- My logstash plugins. Filter: sig (for security detect -> IOC, sig, New value, Reference, link, frequence, ...). Output: alert created by …☆10Jul 26, 2019Updated 6 years ago
- Miscellaneous Scripts☆17Sep 11, 2020Updated 5 years ago
- Automated Use Case Testing☆172May 1, 2018Updated 8 years ago