StrangerealIntel / OrionLinks
A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
☆138Updated last year
Alternatives and similar repositories for Orion
Users that are interested in Orion are comparing it to the libraries listed below
Sorting:
- JPCERT/CC public YARA rules repository☆110Updated 8 months ago
- YARA rule analyzer to improve rule quality and performance☆103Updated 4 months ago
- A guide on how to write fast and memory friendly YARA rules☆151Updated 6 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- ☆130Updated last year
- ☆211Updated 2 months ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆169Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97Updated 2 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 3 months ago
- The Windows Malware Analysis Reversing Core Tools☆96Updated 4 years ago
- ☆141Updated last month
- Collection of rules created using YARA-Signator over Malpedia☆133Updated 9 months ago
- Blueteam operational triage registry hunting/forensic tool.☆149Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆204Updated 3 years ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆131Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 7 months ago
- ☆96Updated 3 months ago
- ☆69Updated 6 months ago
- Detection Engineering with YARA☆87Updated last year
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Cobalt Strike Beacon configuration extractor and parser.☆155Updated 4 years ago
- Research indicators and detection rules☆67Updated last year
- ☆88Updated 3 weeks ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆247Updated 4 months ago
- Active C2 IoCs☆99Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆80Updated 3 months ago