StefanKelm/yara-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

StefanKelm/yara-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/StefanKelm/yara-rules)

Close

StefanKelm / yara-rulesView on GitHubMore

• External links
• Readme badge

Links to malware-related YARA rules

☆15Sep 29, 2022Updated 3 years ago

Alternatives and similar repositories for yara-rules

Users that are interested in yara-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• WithSecureLabs / lazarus-sigma-rules

  View on GitHub
  ☆20Oct 23, 2020Updated 5 years ago
• CapacitorSet / elasticsearch-yara

  View on GitHub
  Yara matching in ElasticSearch.
  ☆10Jun 12, 2018Updated 8 years ago
• k-vitali / cryptomix-clop-ransomware

  View on GitHub
  ☆15Jun 5, 2019Updated 7 years ago
• tasox / Epimitheus

  View on GitHub
  Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.
  ☆19Mar 13, 2022Updated 4 years ago
• zarkones / ControlSTUDIO

  View on GitHub
  Adversary Simulation Framework
  ☆41Aug 19, 2025Updated 10 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• ald3ns / XPR-dump

  View on GitHub
  Helper scripts to automate the extraction of YARA rules from XProtectRemediators
  ☆22Mar 5, 2024Updated 2 years ago
• edelucia / rules

  View on GitHub
  Cyber Threats Detection Rules
  ☆14Sep 16, 2025Updated 9 months ago
• hyuunnn / ida_python_scripts

  View on GitHub
  ida python scripts
  ☆23Jul 23, 2018Updated 7 years ago
• QinetiQ-Cyber-Intelligence / OpenCTI-Terraform

  View on GitHub
  A highly available AWS deployment of the Threat Intelligence platform, OpenCTI using Terraform. Native AWS resources are used where feasi…
  ☆39Apr 23, 2023Updated 3 years ago
• corneacristian / mimikatz-bypass

  View on GitHub
  ☆14Jun 26, 2020Updated 6 years ago
• stoerchl / yara_zip_module

  View on GitHub
  ☆13Oct 21, 2022Updated 3 years ago
• tunelko / CVE-2022-22954-PoC

  View on GitHub
  VMware Workspace ONE Access and Identity Manager RCE via SSTI - Test script for shodan, file or manual.
  ☆16Feb 13, 2024Updated 2 years ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated 3 months ago
• sbmagar13 / raidfscrape

  View on GitHub
  Code to Scraping some portion of Data from forum(RaidForums[seized by FBI]) with Python SCRAPY spiders bypassing recaptcha and storing to…
  ☆11Feb 25, 2021Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• wwwarrior / BugBounty

  View on GitHub
  Cheat Sheets, Metodologies etc.
  ☆19Apr 12, 2019Updated 7 years ago
• deepinstinct / DeMotet

  View on GitHub
  Unpacking and decryption tools for the Emotet malware
  ☆44Dec 5, 2021Updated 4 years ago
• 100DaysofYARA / 2022

  View on GitHub
  ☆23Dec 15, 2022Updated 3 years ago
• sbousseaden / YaraHunts

  View on GitHub
  Random hunting ordiented yara rules
  ☆95Mar 27, 2023Updated 3 years ago
• f-bader / XDRStoryParser

  View on GitHub
  Visualize Microsoft Defender XDR process trees and security events
  ☆33Aug 24, 2025Updated 10 months ago
• archanchoudhury / Power-Forensics

  View on GitHub
  Power-Forensics is the Best Friend for Incident Responders to perform IR and collect evidences for Linux based host
  ☆12Jun 2, 2023Updated 3 years ago
• llevier / vigrid

  View on GitHub
  Vigrid is a Cyber Range redesign of the GNS3 tool able to virtualize almost any physical device on many CPU. It is also able to virtualiz…
  ☆24Mar 5, 2026Updated 3 months ago
• EXC3L-ONE / awesome-synapse

  View on GitHub
  List of Awesome Vertex Synapse Resources
  ☆28Aug 6, 2024Updated last year
• MISP / misp-compliance

  View on GitHub
  Legal, procedural and policies document templates for operating MISP and information sharing communities
  ☆38Jan 31, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• pr0xylife / pr0xylife

  View on GitHub
  Config files for my GitHub profile.
  ☆14May 7, 2023Updated 3 years ago
• mitre / atomic

  View on GitHub
  A MITRE Caldera plugin
  ☆53May 27, 2026Updated last month
• DeborahN / Penetration-Testing-Methodology

  View on GitHub
  Penetration Testing Methodology - short notes
  ☆11May 30, 2015Updated 11 years ago
• SecurityRiskAdvisors / ATTiRe

  View on GitHub
  Attack Tool Timing and Reporting - Structured Attack Logging Format
  ☆22Nov 4, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 4 years ago
• JavierYuste / AvaddonDecryptor

  View on GitHub
  A decryptor for systems infected by Avaddon ransomware.
  ☆25Oct 29, 2024Updated last year
• mobdk / VBA-DLL-WMI-EXECUTION

  View on GitHub
  Call your own DLL from VBA and execute code under process svchost.exe with WMI
  ☆12Mar 6, 2020Updated 6 years ago
• MBCProject / mbc-stix2

  View on GitHub
  MBC v2.x expressed in STIX 2.1 JSON
  ☆16Oct 3, 2023Updated 2 years ago
• jonny-jhnson / Detecting-Process-Injection-Techniques

  View on GitHub
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Mar 3, 2020Updated 6 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• NextronSystems / CyberChef

  View on GitHub
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Jun 18, 2026Updated last week
• jeFF0Falltrades / IoCs

  View on GitHub
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Jun 11, 2020Updated 6 years ago
• gam4er / SneakyRun

  View on GitHub
  Some stuff for PHD2021
  ☆14May 21, 2025Updated last year
• d00rt / emotet_protection_tools

  View on GitHub
  This repository provides tools to fight against Emotet malware. You can protect your system using these tools
  ☆24Jan 24, 2020Updated 6 years ago
• lemmou / RansomNoteFiles

  View on GitHub
  ☆24Apr 10, 2024Updated 2 years ago
• open-source-dfir / slack

  View on GitHub
  Information about the open-source-dfir slack community
  ☆29Jun 17, 2023Updated 3 years ago
• PacktPublishing / Penetration-Testing-with-Raspberry-Pi-Second-Edition

  View on GitHub
  This is the code bundle of Penetration Testing with Raspberry Pi, Second-Edition book
  ☆11Jan 14, 2021Updated 5 years ago