Alternatives and similar repositories for YARA

Users that are interested in YARA are comparing it to the libraries listed below

• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 8 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 8 years ago
• jacobsoo / DDE-Extractor
  This script is used for extracting DDE in docx and xlsx
  ☆12Updated 7 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• bsi-group / officefileinfo
  officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …
  ☆16Updated 9 years ago
• mbrengel / memscrimper
  Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
  ☆27Updated 6 years ago
• scudette / memory-analysis
  A Rekall interactive document for a Memory Analysis workshop/course.
  ☆43Updated 8 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆49Updated 9 years ago
• GelosSnake / MalwareResearchAPI
  API functions for Malware Research
  ☆35Updated 6 years ago
• necst / crave
  Framework to automatically test and explore the capabilities of generic AV engines
  ☆69Updated 6 years ago
• malware-kitten / yara_sig_tool
  A tool to generate yara signatures from function blocks
  ☆19Updated 10 years ago
• ctxis / pac-leak-demo
  PAC HTTPS leak demo from DEF CON 24 'Toxic Proxies' talk
  ☆30Updated 8 years ago
• jjo-sec / idataco
  IDATACO IDA Pro Plugin
  ☆47Updated 9 years ago
• motazreda / MalwareFragmentationTool
  Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…
  ☆37Updated 9 years ago
• joxeankoret / maltindex
  Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns
  ☆67Updated 8 years ago
• ring0x0 / honeydrops
  An automated collection and analysis of malware from my honeypots.
  ☆25Updated 7 years ago
• MalwareLu / malware-lu
  Automatically exported from code.google.com/p/malware-lu
  ☆55Updated 6 years ago
• malware-kitten / public_yara_rules
  a collection of public yara rules
  ☆26Updated 5 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• arbor / reversing
  ASERT shared scripts for reversing
  ☆32Updated 7 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆38Updated 8 years ago
• matonis / ripPE
  ripPE - section extractor and profiler for PE file analysis
  ☆32Updated 10 years ago
• zynamics / bincrowd-plugin-ida
  BinCrowd Plugin for IDA Pro
  ☆43Updated 13 years ago
• brad-sp / community-modified
  Modified edition of cuckoo community modules
  ☆32Updated 5 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆41Updated 6 years ago
• crackinglandia / pype32
  Yet another Python library to read and write PE/PE+ files.
  ☆78Updated 8 years ago