StefanKelm/yara-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

StefanKelm/yara-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/StefanKelm/yara-rules)

Close

StefanKelm / yara-rulesView on GitHubMore

• External links
• Readme badge

Links to malware-related YARA rules

☆15Sep 29, 2022Updated 3 years ago

Alternatives and similar repositories for yara-rules

Users that are interested in yara-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• k-vitali / cryptomix-clop-ransomware

  View on GitHub
  ☆14Jun 5, 2019Updated 6 years ago
• v-p-b / ghidra-vftable

  View on GitHub
  Generate Ghidra class structures
  ☆12Jan 3, 2020Updated 6 years ago
• tghack / tg16hack

  View on GitHub
  TG 2016 hacking compo repo
  ☆10Mar 31, 2016Updated 10 years ago
• Iamgublin / libemu_pe

  View on GitHub
  enable libemu run pe file and add some good modify
  ☆14Feb 4, 2019Updated 7 years ago
• tasox / Epimitheus

  View on GitHub
  Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.
  ☆19Mar 13, 2022Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• zarkones / ControlSTUDIO

  View on GitHub
  Adversary Simulation Framework
  ☆40Aug 19, 2025Updated 8 months ago
• ald3ns / XPR-dump

  View on GitHub
  Helper scripts to automate the extraction of YARA rules from XProtectRemediators
  ☆22Mar 5, 2024Updated 2 years ago
• y11en / r0ak

  View on GitHub
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆14Jan 16, 2019Updated 7 years ago
• edelucia / rules

  View on GitHub
  Cyber Threats Detection Rules
  ☆14Sep 16, 2025Updated 7 months ago
• BreakingMalwareResearch / YetiToElastic

  View on GitHub
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆16Jan 6, 2021Updated 5 years ago
• QinetiQ-Cyber-Intelligence / OpenCTI-Terraform

  View on GitHub
  A highly available AWS deployment of the Threat Intelligence platform, OpenCTI using Terraform. Native AWS resources are used where feasi…
  ☆39Apr 23, 2023Updated 3 years ago
• stoerchl / yara_zip_module

  View on GitHub
  ☆13Oct 21, 2022Updated 3 years ago
• corneacristian / mimikatz-bypass

  View on GitHub
  ☆14Jun 26, 2020Updated 5 years ago
• tunelko / CVE-2022-22954-PoC

  View on GitHub
  VMware Workspace ONE Access and Identity Manager RCE via SSTI - Test script for shodan, file or manual.
  ☆16Feb 13, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated last month
• sbmagar13 / raidfscrape

  View on GitHub
  Code to Scraping some portion of Data from forum(RaidForums[seized by FBI]) with Python SCRAPY spiders bypassing recaptcha and storing to…
  ☆11Feb 25, 2021Updated 5 years ago
• wwwarrior / BugBounty

  View on GitHub
  Cheat Sheets, Metodologies etc.
  ☆19Apr 12, 2019Updated 7 years ago
• deepinstinct / DeMotet

  View on GitHub
  Unpacking and decryption tools for the Emotet malware
  ☆44Dec 5, 2021Updated 4 years ago
• 100DaysofYARA / 2022

  View on GitHub
  ☆23Dec 15, 2022Updated 3 years ago
• sbousseaden / YaraHunts

  View on GitHub
  Random hunting ordiented yara rules
  ☆96Mar 27, 2023Updated 3 years ago
• f-bader / XDRStoryParser

  View on GitHub
  Visualize Microsoft Defender XDR process trees and security events
  ☆33Aug 24, 2025Updated 8 months ago
• archanchoudhury / Power-Forensics

  View on GitHub
  Power-Forensics is the Best Friend for Incident Responders to perform IR and collect evidences for Linux based host
  ☆12Jun 2, 2023Updated 2 years ago
• EXC3L-ONE / awesome-synapse

  View on GitHub
  List of Awesome Vertex Synapse Resources
  ☆28Aug 6, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• MISP / misp-compliance

  View on GitHub
  Legal, procedural and policies document templates for operating MISP and information sharing communities
  ☆38Jan 31, 2023Updated 3 years ago
• mitre / atomic

  View on GitHub
  A MITRE Caldera plugin
  ☆51Updated this week
• PeterMosmans / burp-extensions

  View on GitHub
  A small collection of Burp Suite extensions, written in Python
  ☆10Nov 19, 2016Updated 9 years ago
• DeborahN / Penetration-Testing-Methodology

  View on GitHub
  Penetration Testing Methodology - short notes
  ☆11May 30, 2015Updated 10 years ago
• SecurityRiskAdvisors / ATTiRe

  View on GitHub
  Attack Tool Timing and Reporting - Structured Attack Logging Format
  ☆22Nov 4, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• pr0xylife / Emotet

  View on GitHub
  IOC Collection 2022
  ☆57Mar 7, 2023Updated 3 years ago
• mobdk / VBA-DLL-WMI-EXECUTION

  View on GitHub
  Call your own DLL from VBA and execute code under process svchost.exe with WMI
  ☆12Mar 6, 2020Updated 6 years ago
• MBCProject / mbc-stix2

  View on GitHub
  MBC v2.x expressed in STIX 2.1 JSON
  ☆16Oct 3, 2023Updated 2 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• jonny-jhnson / Detecting-Process-Injection-Techniques

  View on GitHub
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Mar 3, 2020Updated 6 years ago
• NextronSystems / CyberChef

  View on GitHub
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Aug 10, 2022Updated 3 years ago
• jeFF0Falltrades / IoCs

  View on GitHub
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Jun 11, 2020Updated 5 years ago
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated 11 months ago
• d00rt / emotet_protection_tools

  View on GitHub
  This repository provides tools to fight against Emotet malware. You can protect your system using these tools
  ☆24Jan 24, 2020Updated 6 years ago
• lemmou / RansomNoteFiles

  View on GitHub
  ☆24Apr 10, 2024Updated 2 years ago
• PacktPublishing / Penetration-Testing-with-Raspberry-Pi-Second-Edition

  View on GitHub
  This is the code bundle of Penetration Testing with Raspberry Pi, Second-Edition book
  ☆11Jan 14, 2021Updated 5 years ago