A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
☆141Nov 19, 2023Updated 2 years ago
Alternatives and similar repositories for Orion
Users that are interested in Orion are comparing it to the libraries listed below
Sorting:
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- JPCERT/CC public YARA rules repository☆109Mar 9, 2026Updated last week
- Sigma rules to share with the community☆124Jan 29, 2025Updated last year
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34May 17, 2021Updated 4 years ago
- Tools for assisting the reverse engineering of Qakbot☆11Jul 21, 2021Updated 4 years ago
- ☆553Dec 4, 2023Updated 2 years ago
- Collection of rules created using YARA-Signator over Malpedia☆141Jan 6, 2026Updated 2 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆388May 11, 2022Updated 3 years ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 6 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆723Dec 26, 2022Updated 3 years ago
- ☆215Jun 5, 2025Updated 9 months ago
- Repository of YARA rules made by Trellix ATR Team☆627Mar 18, 2025Updated last year
- ☆96May 5, 2025Updated 10 months ago
- Yara station is a management portal for Neo23x0-Loki. The mission is to transform the standalone nature of the Loki scanner into a centra…☆34Feb 1, 2022Updated 4 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 3 years ago
- 🐻❄️ 🏹 Threat hunting with Polars and flaws.cloud AWS CloudTrail datasets.☆14May 22, 2024Updated last year
- ☆14Oct 25, 2022Updated 3 years ago
- Helper scripts to automate the extraction of YARA rules from XProtectRemediators☆22Mar 5, 2024Updated 2 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Apr 14, 2023Updated 2 years ago
- ReversingLabs YARA Rules☆900Nov 3, 2025Updated 4 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆167Feb 11, 2025Updated last year
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 8 months ago
- ☆66Jan 27, 2023Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- Volatility plugin for extracts configuration data of known malware☆495Dec 22, 2023Updated 2 years ago
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆15Jan 20, 2021Updated 5 years ago
- ☆18Mar 26, 2024Updated last year
- Configuration Extractors for Malware☆124Apr 23, 2025Updated 10 months ago
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58May 24, 2021Updated 4 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Jan 31, 2024Updated 2 years ago
- ☆44Jul 11, 2025Updated 8 months ago
- Collection of YARA signatures from individual research☆44Nov 20, 2023Updated 2 years ago
- Elastic Security detection content for Endpoint☆1,384Mar 13, 2026Updated last week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆340Dec 3, 2025Updated 3 months ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆209Jul 21, 2022Updated 3 years ago
- ☆23Jul 7, 2023Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Jan 18, 2022Updated 4 years ago