Neo23x0 / awesome-yara

Related projects ⓘ

Alternatives and complementary repositories for awesome-yara

• YahooArchive / PyIOCe
  Python IOC Editor
  ☆61Updated 9 years ago
• S03D4-164 / Hiryu
  IOC Management and Visualization Tool
  ☆47Updated last year
• EC-DIGIT-CSIRC / VirusTotal-Tools
  ☆36Updated 7 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆52Updated 3 years ago
• Foundstone / InvestigationPlaybookSpec
  InvestigationPlaybookSpec
  ☆72Updated 7 years ago
• sroberts / jager
  Hunting IOCs all day every day...
  ☆83Updated last year
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated last year
• Jrotenberger / Powershell-IR-Scripts
  ☆39Updated 5 years ago
• sfakiana / FIRST-CTI-2019
  References for FIRST CTI 2019 Symposium presentation
  ☆23Updated 5 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 7 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 3 years ago
• hiddenillusion / IR
  Some dfir stuff
  ☆31Updated 2 years ago
• mandiant / AuditParser
  AuditParser
  ☆58Updated 11 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆54Updated 3 years ago
• dlcowen / dfirwizard
  Example programs used in the automating DFIR series
  ☆64Updated 5 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 5 years ago
• daverstephens / The-SOC-Shop
  Repository of scripts/tools that may be useful in Security Operations Centres (SOC)
  ☆54Updated 3 years ago
• kevthehermit / YaraRules
  My Yara Rules Collection
  ☆52Updated 8 years ago
• fl0x2208 / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 7 years ago
• jtmoran / parseRS
  Parses IE's Automatic Crash Recovery Files
  ☆16Updated 7 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆39Updated 4 years ago
• ctxis / cbrcli
  Command line interface to Carbon Black Response
  ☆38Updated 4 years ago
• michael-yip / MaltegoVT
  A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…
  ☆79Updated 8 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆46Updated 6 years ago
• n3l5 / irFARTpull
  PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.
  ☆50Updated 6 years ago
• AlienVault-OTX / OTX-Apps-TAXII
  Alienvault OTX TAXII connector
  ☆54Updated 7 years ago