YARAHQ / yara-forge

Related projects ⓘ

Alternatives and complementary repositories for yara-forge

• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆66Updated last week
• Yamato-Security / hayabusa-rules
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆144Updated this week
• The-DFIR-Report / Sigma-Rules
  Rules generated from our investigations.
  ☆189Updated 3 weeks ago
• tsale / Sigma_rules
  Sigma rules to share with the community
  ☆115Updated 2 months ago
• magicsword-io / LOLRMM
  LotL RMM
  ☆96Updated this week
• elastic / labs-releases
  Elastic Security Labs releases
  ☆52Updated 3 weeks ago
• mbabinski / Sigma-Rules
  A repository of my own Sigma detection rules.
  ☆156Updated 2 months ago
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆258Updated 11 months ago
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆119Updated this week
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆126Updated last year
• mf1d3l / Splunk4DFIR
  Harness the power of Splunk for your investigations
  ☆77Updated this week
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆150Updated last year
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated last year
• netskopeoss / NetskopeThreatLabsIOCs
  ☆91Updated this week
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆37Updated 9 months ago
• ControlCompass / ControlCompass.github.io
  Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques
  ☆123Updated 8 months ago
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆78Updated 7 months ago
• SigmaHQ / pySigma-backend-elasticsearch
  pySigma Elasticsearch backend
  ☆43Updated this week
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆103Updated 5 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆104Updated last month
• jsecurity101 / TelemetrySource
  ☆222Updated 6 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated 11 months ago
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆194Updated 2 years ago
• MISP / misp-playbooks
  MISP Playbooks
  ☆174Updated last month
• SigmaHQ / sigma-cli
  The Sigma command line interface based on pySigma
  ☆136Updated 3 months ago
• swimlane / atomic-operator
  A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
  ☆136Updated 4 months ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆180Updated 10 months ago
• magicsword-io / sigconverter.io
  An opensource sigma conversion tool built using pysigma
  ☆96Updated this week
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆85Updated 10 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆161Updated last week