YARAHQ / yara-forge
Automated YARA Rule Standardization and Quality Assurance Tool
☆200Updated this week
Alternatives and similar repositories for yara-forge:
Users that are interested in yara-forge are comparing it to the libraries listed below
- Rules generated from our investigations.☆192Updated this week
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆165Updated this week
- ☆124Updated 3 weeks ago
- The Sigma command line interface based on pySigma☆147Updated 3 weeks ago
- Anything Sysmon related from the MSTIC R&D team☆150Updated 9 months ago
- A repository of my own Sigma detection rules.☆157Updated 6 months ago
- An opensource sigma conversion tool built using pysigma☆121Updated 3 months ago
- An IDE and translation engine for detection engineers and threat hunters. Be faster, write smarter, keep 100% privacy.☆144Updated last month
- A repository to share publicly available Velociraptor detection content☆137Updated last week
- Sigma rules to share with the community☆119Updated last month
- Rapidly Search and Hunt through Linux Forensics Artifacts☆188Updated last year
- pySigma Elasticsearch backend☆50Updated this week
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆352Updated 2 months ago
- LOKI2 - Simple IOC and YARA Scanner☆87Updated 7 months ago
- Sigma rule specification☆128Updated 2 weeks ago
- LotL RMM☆151Updated this week
- MISP Playbooks☆188Updated last month
- Harness the power of Splunk for your investigations☆92Updated last week
- Forensic Artifact Collection Tool Matrix☆83Updated 4 months ago
- A guide on how to write fast and memory friendly YARA rules☆141Updated last month
- 🏴☠️💰 Another Ransomware gang tracker☆184Updated 3 weeks ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆167Updated last month
- Active C&C Detector☆152Updated last year
- A python script developed to process Windows memory images based on triage type.☆261Updated last year
- Signatures and IoCs from public Volexity blog posts.☆350Updated last month
- Live forensic artifacts collector☆165Updated 8 months ago
- ☆67Updated 3 weeks ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆163Updated last year
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆77Updated this week