VirusTotal / yara-xView external linksLinks
A rewrite of YARA in Rust.
☆1,031Updated this week
Alternatives and similar repositories for yara-x
Users that are interested in yara-x are comparing it to the libraries listed below
Sorting:
- Rust bindings for VirusTotal/Yara☆80Nov 19, 2025Updated 2 months ago
- The pattern matching swiss knife☆9,408Updated this week
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,813Feb 5, 2026Updated last week
- Automated YARA Rule Standardization and Quality Assurance Tool☆282Updated this week
- Malware Configuration And Payload Extraction☆2,991Feb 6, 2026Updated last week
- Elastic Security detection content for Endpoint☆1,372Feb 6, 2026Updated last week
- High Octane Triage Analysis☆808Updated this week
- A guide on how to write fast and memory friendly YARA rules☆164Feb 11, 2025Updated last year
- Malduck is your ducky companion in malware analysis journeys☆349Jun 22, 2025Updated 7 months ago
- Extracted Yara rules from Windows Defender mpavbase and mpasbase☆494Dec 22, 2025Updated last month
- A curated list of awesome YARA rules, tools, and people.☆4,136Mar 26, 2025Updated 10 months ago
- Idiomatic Rust bindings for the IDA SDK, enabling the development of standalone analysis tools using IDA v9.x’s idalib☆239Jan 22, 2026Updated 3 weeks ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆685Jan 30, 2026Updated 2 weeks ago
- YARA Language Server☆75Feb 3, 2026Updated last week
- YARA signature and IOC database for my scanners and tools☆2,864Feb 5, 2026Updated last week
- ReversingLabs YARA Rules☆895Nov 3, 2025Updated 3 months ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,440Oct 12, 2025Updated 4 months ago
- A Binary Genetic Traits Lexer Framework☆522Aug 14, 2025Updated 6 months ago
- Windows kernel and user mode emulation.☆1,837Feb 4, 2026Updated last week
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,924Jan 20, 2026Updated 3 weeks ago
- Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers☆50Jun 1, 2025Updated 8 months ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,877Feb 3, 2026Updated last week
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆3,014Feb 4, 2026Updated last week
- Rust for malware Development is a repository for advanced Red Team techniques and offensive malwares & Ransomwares, focused on Rust 🦀☆3,284Feb 1, 2026Updated last week
- Digging Deeper....☆3,747Feb 5, 2026Updated last week
- Rules Shared by the Community from 100 Days of YARA 2023☆78Apr 12, 2023Updated 2 years ago
- Collection of private Yara rules.☆378Jan 28, 2026Updated 2 weeks ago
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,550Oct 31, 2025Updated 3 months ago
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 5 months ago
- Repository of YARA rules made by Trellix ATR Team☆625Mar 18, 2025Updated 10 months ago
- Repository of yara rules☆4,697Apr 17, 2024Updated last year
- yarGen is a generator for YARA rules☆1,774Jan 10, 2026Updated last month
- Go symbol recovery tool☆912Jan 13, 2026Updated last month
- Parsing of YARA rules into AST and building new rulesets in C++.☆129Jan 25, 2026Updated 2 weeks ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,310Oct 31, 2025Updated 3 months ago
- Main Sigma Rule Repository☆10,109Updated this week
- RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust☆1,831Dec 29, 2025Updated last month
- Sysmon-Like research tool for ETW☆384Nov 15, 2022Updated 3 years ago