ahhh / YARA
a collection of yara rules for binary analysis
☆24Updated 7 years ago
Alternatives and similar repositories for YARA:
Users that are interested in YARA are comparing it to the libraries listed below
- Work Fast With the pattern matching swiss knife for malware researchers.☆36Updated 8 years ago
- QEMU with rVMI extensions☆25Updated 7 years ago
- Malware.lu configuration extractor☆24Updated 10 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- POC for IAT Parsing Payloads☆47Updated 8 years ago
- officefileinfo is a python script to help analyse the newer Microsoft Office file formats. There are numerous tools for dealing with the …☆16Updated 8 years ago
- A Volatility plugin for finding sqlite database rows☆22Updated 5 years ago
- Volatility Plugins☆21Updated 9 years ago
- A tool to generate yara signatures from function blocks☆19Updated 10 years ago
- Analysis PE file or Shellcode☆49Updated 8 years ago
- Malware analyses and helpful scripts☆29Updated 2 years ago
- a collection of public yara rules☆26Updated 5 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- Basic file metadata gathering script☆21Updated 3 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 6 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 9 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 5 years ago
- Test suite for bypassing Malware sandboxes.☆38Updated 10 years ago
- API functions for Malware Research☆35Updated 5 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 7 years ago
- Exposing the Neutrino EK: All the Naughty Bits (BSidesLV16)☆15Updated 8 years ago
- zer0m0n driver for cuckoo sandbox☆21Updated 9 years ago
- ☆16Updated 9 years ago