The-DFIR-Report/Yara-Rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

The-DFIR-Report/Yara-Rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/The-DFIR-Report/Yara-Rules)

Close

The-DFIR-Report / Yara-RulesView on GitHubMore

• External links
• Readme badge

☆82Sep 29, 2025Updated 7 months ago

Alternatives and similar repositories for Yara-Rules

Users that are interested in Yara-Rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• The-DFIR-Report / Sigma-Rules

  View on GitHub
  Rules generated from our investigations.
  ☆208Jun 17, 2025Updated 10 months ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• The-DFIR-Report / Suricata-Rules

  View on GitHub
  ☆11Jun 12, 2023Updated 2 years ago
• RussianPanda95 / Yara-Rules

  View on GitHub
  Repository of Yara Rules
  ☆143Apr 29, 2026Updated last week
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆143Jan 6, 2026Updated 4 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• HarfangLab / iocs

  View on GitHub
  Indicators of compromise
  ☆17Jan 29, 2026Updated 3 months ago
• mdecrevoisier / SIGMA-detection-rules

  View on GitHub
  Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques
  ☆428Nov 8, 2025Updated 5 months ago
• mikesxrs / Open-Source-YARA-rules

  View on GitHub
  YARA Rules I come across on the internet
  ☆364Apr 17, 2024Updated 2 years ago
• ACE-Responder / rpcfirewall-extended-telemetry

  View on GitHub
  ☆16May 3, 2024Updated 2 years ago
• edelucia / rules

  View on GitHub
  Cyber Threats Detection Rules
  ☆14Sep 16, 2025Updated 7 months ago
• embee-research / Yara-detection-rules

  View on GitHub
  Yara Rules for Modern Malware
  ☆80Mar 3, 2024Updated 2 years ago
• rad9800 / RansomFS

  View on GitHub
  ☆31Feb 28, 2025Updated last year
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,421Apr 30, 2026Updated last week
• tomwechsler / Threat_Hunting_with_PowerShell

  View on GitHub
  Security even with a small budget - there is no excuse!
  ☆20May 24, 2023Updated 2 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• fboldewin / YARA_Detection_Engineering

  View on GitHub
  Detection Engineering with YARA
  ☆87Jan 6, 2024Updated 2 years ago
• pr0xylife / Pikabot

  View on GitHub
  ☆32Mar 11, 2026Updated last month
• mthcht / ThreatHunting-Keywords-yara-rules

  View on GitHub
  yara detection rules for hunting with the threathunting-keywords project
  ☆161May 11, 2025Updated 11 months ago
• WithSecureLabs / iocs

  View on GitHub
  ☆19Apr 16, 2026Updated 3 weeks ago
• Neo23x0 / YARA-Style-Guide

  View on GitHub
  A specification and style guide for YARA rules
  ☆73Feb 17, 2024Updated 2 years ago
• Yamato-Security / hayabusa-rules

  View on GitHub
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆217Apr 29, 2026Updated last week
• keydet89 / Events-Ripper

  View on GitHub
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆89Feb 9, 2025Updated last year
• LivingInSyn / RMML

  View on GitHub
  A list of RMMs designed to be used in automation to build alerts
  ☆119Nov 9, 2025Updated 5 months ago
• Cyb3r-Monk / Cheat-Sheets

  View on GitHub
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Oct 7, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• certsocietegenerale / rAIdline

  View on GitHub
  IR drill plateform
  ☆23Jul 29, 2025Updated 9 months ago
• AndrewRathbun / ForensicImageKAPEOutput

  View on GitHub
  A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!
  ☆17Aug 31, 2024Updated last year
• stratosphereips / yara-rules

  View on GitHub
  Repository of Yara rules created by the Stratosphere team
  ☆29Jul 8, 2021Updated 4 years ago
• mandiant / citrix-ioc-scanner-cve-2023-3519

  View on GitHub
  ☆66Sep 1, 2023Updated 2 years ago
• Velocidex / registry_hunter

  View on GitHub
  Hunt the windows Registry automatically using VQL
  ☆16Updated this week
• roadwy / DefenderYara

  View on GitHub
  Extracted Yara rules from Windows Defender mpavbase and mpasbase
  ☆525Dec 22, 2025Updated 4 months ago
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆806Apr 6, 2026Updated last month
• Securonix / AutonomousThreatSweeper

  View on GitHub
  Threat Hunting queries for various attacks
  ☆244Jan 16, 2026Updated 3 months ago
• advanced-threat-research / Yara-Rules

  View on GitHub
  Repository of YARA rules made by Trellix ATR Team
  ☆627Mar 18, 2025Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• StrangerealIntel / Orion

  View on GitHub
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆141Nov 19, 2023Updated 2 years ago
• SEKOIA-IO / Community

  View on GitHub
  Welcome to the SEKOIA.IO Community repository!
  ☆184Apr 29, 2026Updated last week
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆111Mar 9, 2026Updated last month
• YARAHQ / yara-forge

  View on GitHub
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆312Updated this week
• curated-intel / attack-lookup

  View on GitHub
  A MITRE ATT&CK Lookup Tool
  ☆46Apr 25, 2024Updated 2 years ago
• huntresslabs / threat-intel

  View on GitHub
  This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.
  ☆48Feb 27, 2026Updated 2 months ago
• 100DaysofYARA / 2023

  View on GitHub
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Apr 12, 2023Updated 3 years ago