ail-project / ail-yara-rules

Related projects ⓘ

Alternatives and complementary repositories for ail-yara-rules

• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 2 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 2 years ago
• stratosphereips / yara-rules
  Repository of Yara rules created by the Stratosphere team
  ☆26Updated 3 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆44Updated last year
• c2defense / network-device-logs
  Analytics for Accounting logs from Network devices
  ☆16Updated 3 years ago
• ahhh / presentations
  various slides and presentations I've worked on
  ☆18Updated 9 months ago
• JPCERTCC / SurfaceAnalysis-on-Cloud
  Surface Analysis System on Cloud
  ☆19Updated 11 months ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 3 years ago
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• jacopodl / Pulsar
  Data exfiltration and covert communication tool
  ☆37Updated last year
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 3 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated 9 months ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• SIFalcon / Detection
  ☆21Updated last year
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• ruppde / yara_rules
  Yara rules
  ☆20Updated last year
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• RiccardoAncarani / bloodhound-playbook
  Reproducible and extensible BloodHound playbooks
  ☆42Updated 4 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated last year
• CptOfEvilMinions / ThreatHuntingEQLandBro
  Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.
  ☆8Updated 5 years ago
• BinaryDefense / IcedDecrypt
  IcedID Decryption Tool
  ☆27Updated 3 years ago
• iAbdullahMughal / dscan
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Updated last week
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago