Northern-Lights / yara-parserLinks
Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
☆85Updated 2 years ago
Alternatives and similar repositories for yara-parser
Users that are interested in yara-parser are comparing it to the libraries listed below
Sorting:
- A Yara rule generator for finding related samples and hunting☆160Updated 2 years ago
- Parse YARA rules and operate over them more easily.☆191Updated 5 months ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- ☆98Updated 4 years ago
- YARA rules for use with ProcFilter☆87Updated 8 years ago
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆77Updated 3 years ago
- A taxonomy and dictionary of malware behaviors.☆43Updated 5 years ago
- PE Import Hash Generator☆80Updated 8 years ago
- Various Yara signatures (possibly to be included in a release later).☆86Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated last year
- Django web interface for managing Yara rules☆193Updated 7 years ago
- Ursnif beacon decryptor☆27Updated 2 years ago
- YaGo, converting Yara rules into JSON files.☆52Updated 6 years ago
- CLI tool to analyze PE files☆87Updated 10 months ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆75Updated last month
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Trigram database written in C++, suited for malware indexing☆125Updated 9 months ago
- Handy scripts to speed up malware analysis☆35Updated last year
- A Python library and command line tools to provide interactive log visualization.☆142Updated 2 years ago
- Minimal, consistent Python API for building integrations with malware sandboxes.☆139Updated last year
- My Yara Rules Collection☆52Updated 9 years ago
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- ☆128Updated 6 months ago
- a modified version base on Tracecorn☆20Updated 5 years ago
- Fuzzy Hash calculated from import API of PE files☆90Updated 2 years ago
- Various config files obtained during malware analysis☆67Updated 6 years ago
- Telsy CTI Research Team☆57Updated 4 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago