Northern-Lights / yara-parser
Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
☆83Updated 2 years ago
Alternatives and similar repositories for yara-parser:
Users that are interested in yara-parser are comparing it to the libraries listed below
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Parse YARA rules and operate over them more easily.☆187Updated 3 months ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 5 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- My Yara Rules Collection☆52Updated 9 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated last year
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆76Updated 3 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- YARA rules for use with ProcFilter☆86Updated 7 years ago
- A taxonomy and dictionary of malware behaviors.☆42Updated 5 years ago
- Django web interface for managing Yara rules☆192Updated 6 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- ☆98Updated 4 years ago
- Yara rules for malware families seen as part of targeted threats project☆137Updated 8 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- Web based Manager for Yara Rules☆57Updated 5 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 3 months ago
- Trigram database written in C++, suited for malware indexing☆125Updated 6 months ago
- Process HTTP Pcaps With YARA☆102Updated 11 years ago
- ☆33Updated 5 years ago
- ☆82Updated 8 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆61Updated last year
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Collection of YARA signatures from individual research☆44Updated last year
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 5 years ago
- A collection of infosec related scripts and information.☆53Updated 7 months ago
- Python IOC Editor☆63Updated 10 years ago
- A Windows Event Processing Utility☆46Updated 7 years ago