YARA rule analyzer to improve rule quality and performance
☆113Jan 18, 2026Updated 2 months ago
Alternatives and similar repositories for yaraQA
Users that are interested in yaraQA are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆65Aug 10, 2022Updated 3 years ago
- IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&…☆383Dec 9, 2022Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆167Feb 11, 2025Updated last year
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 3 years ago
- A curated list of awesome YARA rules, tools, and people.☆33Oct 26, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Collection of private Yara rules.☆379Jan 28, 2026Updated 2 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆298Mar 22, 2026Updated last week
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆254Oct 29, 2025Updated 5 months ago
- Threat Hunting & Incident Investigation with Osquery☆217Mar 30, 2022Updated 4 years ago
- ☆24Mar 12, 2025Updated last year
- ☆159Nov 26, 2023Updated 2 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.☆148Feb 1, 2026Updated last month
- A tool that adds reproducible UUIDs to YARA rules☆13Apr 24, 2024Updated last year
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆864Jan 20, 2022Updated 4 years ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆117Mar 2, 2026Updated 3 weeks ago
- ReversingLabs YARA Rules☆900Nov 3, 2025Updated 4 months ago
- HASH (HTTP Agnostic Software Honeypot)☆141Mar 22, 2026Updated last week
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,064Oct 5, 2023Updated 2 years ago
- YARA signature and IOC database for my scanners and tools☆2,898Mar 21, 2026Updated last week
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆93Sep 7, 2023Updated 2 years ago
- Documentation and scripts to properly enable Windows event logs.☆674Oct 3, 2025Updated 5 months ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Sigma rules to share with the community☆124Jan 29, 2025Updated last year
- Rules generated from our investigations.☆204Jun 17, 2025Updated 9 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆141Nov 19, 2023Updated 2 years ago
- Analyzing AD domains for security risks related to user accounts☆64Nov 11, 2022Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 8 months ago
- ☆553Dec 4, 2023Updated 2 years ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆417Nov 8, 2025Updated 4 months ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- IoC's, PCRE's, YARA's etc☆23Mar 25, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆794Mar 22, 2026Updated last week
- A repository of my own Sigma detection rules.☆164Nov 25, 2025Updated 4 months ago
- A nim port of C5pider's Ekko project.☆17Oct 1, 2022Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆388May 11, 2022Updated 3 years ago
- Collection of Jupyter Notebooks by @fr0gger_☆193Dec 16, 2025Updated 3 months ago
- Parse YARA rules and operate over them more easily.☆195Feb 6, 2025Updated last year