VirusTotal / vt-public-crowdsourced-yara

Related projects: ⓘ

• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 4 months ago
• MalGamy / YARA_Rules
  ☆63Updated last year
• RustyNoob-619 / 100-Days-of-YARA-2024
  ☆19Updated 5 months ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated 11 months ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 9 months ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆49Updated 3 months ago
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆14Updated last year
• google / permhash
  ☆42Updated 5 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆49Updated 4 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆75Updated last year
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆29Updated this week
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆74Updated 2 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆76Updated last year
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 2 years ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆51Updated 2 weeks ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆68Updated 6 months ago
• ald3ns / copy-as-yara
  This is a little plugin to copy disassembly in a way that is usable in YARA rules!
  ☆30Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated 10 months ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆22Updated 5 months ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆44Updated 6 months ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆45Updated 3 months ago
• vc0RExor / Quick-Analysis
  Quick analysis focusing on most important of a Malware or a Threat
  ☆39Updated last year
• stvemillertime / Cerebro
  Scripts and lists to help generate YARA friendly string mutations
  ☆19Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• magicsword-io / bootloaders
  bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…
  ☆47Updated last year
• iomoath / yara-scanner
  YaraScanner is a file pattern-matching tool based on YARA rules.
  ☆54Updated last year
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆46Updated 10 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆65Updated last month
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year