Alternatives and similar repositories for YARA:

Users that are interested in YARA are comparing it to the libraries listed below

• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• malware-kitten / yara_sig_tool
  A tool to generate yara signatures from function blocks
  ☆19Updated 10 years ago
• bsi-group / officefileinfo
  officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …
  ☆16Updated 9 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆21Updated 10 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆49Updated 8 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 7 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• jacobsoo / DDE-Extractor
  This script is used for extracting DDE in docx and xlsx
  ☆12Updated 7 years ago
• GelosSnake / MalwareResearchAPI
  API functions for Malware Research
  ☆35Updated 5 years ago
• silascutler / IDA_AutoAnalysis
  IDA Pro plugin that rename functions on load, based on functionality
  ☆19Updated 7 years ago
• Mipu94 / BroIDS_Unicorn
  simple plugin to detect shellcode on Bro IDS with Unicorn
  ☆33Updated 8 years ago
• nccgroup / WindowsFirewallHookDriverEnumeration
  Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003
  ☆20Updated 10 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• mbrengel / memscrimper
  Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
  ☆27Updated 5 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• TheEnergyStory / malware_analysis
  Malware analyses and helpful scripts
  ☆29Updated 2 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 7 years ago
• mak / libzpy
  library to decode/parse zeus-like configuration files
  ☆29Updated 7 years ago
• RISCYBusiness / Jadoube
  ☆22Updated 7 years ago
• helpsystems / GDIObjDump
  ☆34Updated 9 years ago
• securesean / sdbScanner
  Volatility Plugin to scan for shimmed processes in Windows
  ☆10Updated 9 years ago
• msuiche / malcheck
  Portable utility to check if a machine has been infected by Shamoon2
  ☆15Updated 8 years ago
• rj-chap / ExposingNeutrino
  Exposing the Neutrino EK: All the Naughty Bits (BSidesLV16)
  ☆15Updated 8 years ago
• nao-sec / mal_getter
  Tool for dropping malware from EK
  ☆40Updated 7 years ago
• carlpulley / volatility
  A collection of Volatility Framework plugins.
  ☆26Updated 11 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• matonis / ripPE
  ripPE - section extractor and profiler for PE file analysis
  ☆32Updated 10 years ago
• mbrown1413 / SqliteFind
  A Volatility plugin for finding sqlite database rows
  ☆22Updated 5 years ago
• JR0driguezB / malware_analysis
  Various snippets created during malware analysis
  ☆22Updated 7 years ago