YARA rule analyzer to improve rule quality and performance
☆115Jun 4, 2026Updated 2 weeks ago
Alternatives and similar repositories for yaraQA
Users that are interested in yaraQA are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Compiler from Sigma rules to VQL☆19May 18, 2026Updated last month
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆66Aug 10, 2022Updated 3 years ago
- IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&…☆384Dec 9, 2022Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆172Feb 11, 2025Updated last year
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A curated list of awesome YARA rules, tools, and people.☆33Oct 26, 2023Updated 2 years ago
- Collection of private Yara rules.☆384Jan 28, 2026Updated 4 months ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆261Oct 29, 2025Updated 7 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆321Updated this week
- Threat Hunting & Incident Investigation with Osquery☆217Mar 30, 2022Updated 4 years ago
- ☆23Mar 12, 2025Updated last year
- ☆159Nov 26, 2023Updated 2 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.☆150Feb 1, 2026Updated 4 months ago
- A tool that adds reproducible UUIDs to YARA rules☆14May 15, 2026Updated last month
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆867Jan 20, 2022Updated 4 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆119May 27, 2026Updated 3 weeks ago
- ReversingLabs YARA Rules☆922Nov 3, 2025Updated 7 months ago
- HASH (HTTP Agnostic Software Honeypot)☆142Updated this week
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders☆1,069Oct 5, 2023Updated 2 years ago
- YARI is an interactive debugger for YARA Language.☆91Sep 10, 2025Updated 9 months ago
- YARA signature and IOC database for my scanners and tools☆2,970Jun 10, 2026Updated last week
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Sep 7, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Sigma rules to share with the community☆126Jan 29, 2025Updated last year
- Documentation and scripts to properly enable Windows event logs.☆706Oct 3, 2025Updated 8 months ago
- Rules generated from our investigations.☆210Jun 17, 2025Updated last year
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆141Nov 19, 2023Updated 2 years ago
- Analyzing AD domains for security risks related to user accounts☆64Nov 11, 2022Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆152Jul 3, 2025Updated 11 months ago
- ☆553Dec 4, 2023Updated 2 years ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆435May 21, 2026Updated 3 weeks ago
- Publicly shareable windows event log message data☆29Nov 29, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- IoC's, PCRE's, YARA's etc☆23Mar 25, 2025Updated last year
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆823May 30, 2026Updated 2 weeks ago
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 6 months ago
- A nim port of C5pider's Ekko project.☆18Oct 1, 2022Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆390May 11, 2022Updated 4 years ago
- Collection of Jupyter Notebooks by @fr0gger_☆195May 11, 2026Updated last month