Northern-Lights / yara-parser
Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
☆83Updated 2 years ago
Alternatives and similar repositories for yara-parser:
Users that are interested in yara-parser are comparing it to the libraries listed below
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Parse YARA rules and operate over them more easily.☆181Updated last month
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆106Updated 7 years ago
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆76Updated 3 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆98Updated last month
- Various Yara signatures (possibly to be included in a release later).☆86Updated 5 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 5 years ago
- My Yara Rules Collection☆52Updated 9 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- Django web interface for managing Yara rules☆190Updated 6 years ago
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 2 years ago
- Process HTTP Pcaps With YARA☆101Updated 11 years ago
- Web based Manager for Yara Rules☆57Updated 5 years ago
- Generating YARA rules based on binary code☆205Updated 3 years ago
- Cuckoo Agent.☆23Updated 6 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆72Updated 2 months ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- A taxonomy and dictionary of malware behaviors.☆42Updated 5 years ago
- Modified edition of cuckoo community modules☆50Updated 7 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- Various config files obtained during malware analysis☆67Updated 6 years ago
- Ursnif beacon decryptor☆27Updated last year
- ☆98Updated 4 years ago
- YaGo, converting Yara rules into JSON files.☆52Updated 6 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆80Updated 3 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆82Updated last year
- Various public documents, whitepapers and articles about APT campaigns☆54Updated 8 years ago
- Smart DLL execution for malware analysis in sandbox systems☆143Updated 10 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated last year