Alternatives and similar repositories for YaraFlux

Users that are interested in YaraFlux are comparing it to the libraries listed below

• opencybersecurityalliance / oca-iob
  Augmentation to Machine Readable CTI
  ☆37Updated 3 months ago
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆62Updated last year
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆86Updated 11 months ago
• blueteam0ps / AllthingsTimesketch
  This repository contains helper scripts and custom configs to get the best out of Google's Timesketch project.
  ☆117Updated 2 years ago
• weslambert / velocistack
  ☆53Updated last year
• S-RM / wiskess_rust
  WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.
  ☆14Updated last month
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆150Updated last month
• ReconInfoSec / velociraptor-to-timesketch
  ☆13Updated last year
• redhat-infosec / priority-intelligence-requirements-dev
  This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements
  ☆125Updated 2 years ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆149Updated last month
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆162Updated 2 weeks ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 3 weeks ago
• mnrkbys / fjta
  FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…
  ☆96Updated last week
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆51Updated 6 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆157Updated 9 months ago
• YARAHQ / yara-forge
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆261Updated this week
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆191Updated last week
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆53Updated this week
• dfir-iris / iris-client
  Python client for DFIR-IRIS
  ☆25Updated last year
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆72Updated 2 weeks ago
• SigmaHQ / sigma-specification
  Sigma rule specification
  ☆159Updated last week
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆166Updated last week
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆222Updated last year
• mgreen27 / mcp-velociraptor
  VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.
  ☆62Updated 3 months ago
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆62Updated last year
• korniko98 / pivot-atlas
  ☆100Updated last month
• THORCollective / HEARTH
  A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …
  ☆291Updated last week
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆114Updated this week
• dlcowen / sansfor509
  Public script from SANS FOR509 Enterprise Cloud Incident Response
  ☆215Updated last month
• UncoderIO / Uncoder_IO
  An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.
  ☆166Updated last week