VirusTotal / yara-x
A rewrite of YARA in Rust.
☆622Updated this week
Related projects: ⓘ
- AVML - Acquire Volatile Memory for Linux☆850Updated this week
- Threat-hunting tool for Linux☆356Updated this week
- High Octane Triage Analysis☆629Updated this week
- AssemblyLine 4: File triage and malware analysis☆232Updated this week
- Distributed malware processing framework based on Python, Redis and S3.☆381Updated last week
- Living Off The Land Drivers☆981Updated last week
- A centralized and enhanced memory analysis platform☆355Updated 2 weeks ago
- Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…☆898Updated this week
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,032Updated last week
- ReversingLabs YARA Rules☆744Updated last week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆519Updated this week
- Malduck is your ducky companion in malware analysis journeys☆313Updated 3 months ago
- A GUI and CLI tool for removing bloat from executables☆332Updated 3 weeks ago
- Elastic Security detection content for Endpoint☆998Updated this week
- Collection of private Yara rules.☆317Updated last month
- A Fast (and safe) parser for the Windows XML Event Log (EVTX) format☆652Updated 2 weeks ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆485Updated this week
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆2,180Updated 2 weeks ago
- Malware repository component for samples & static configuration with REST API interface.☆317Updated this week
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆382Updated this week
- The multi-platform memory acquisition tool.☆669Updated 2 months ago
- Open Source EDR for Windows☆1,137Updated last year
- This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be…☆586Updated 2 months ago
- CLI tools for forensic investigation of Windows artifacts☆296Updated last month
- MBC content in markdown☆359Updated this week
- ☆411Updated last week
- Repository of YARA rules made by Trellix ATR Team☆560Updated 9 months ago
- UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of …☆741Updated 2 weeks ago
- 🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust☆1,142Updated 2 weeks ago
- Dynamic unpacker based on PE-sieve☆650Updated 6 months ago