anyrun / YARALinks
☆19Updated 6 months ago
Alternatives and similar repositories for YARA
Users that are interested in YARA are comparing it to the libraries listed below
Sorting:
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Sigma rules converted for direct use with Zircolite☆13Updated this week
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- A quick reference guide for python script development in DFIR☆17Updated last year
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 5 months ago
- Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.☆24Updated 2 years ago
- Quick ESXi Log Parser☆20Updated 4 months ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated last year
- A few XDR Scripts☆20Updated 2 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 10 months ago
- A YARA & Malware Analysis Toolkit written in Rust.☆31Updated last week
- Can you pay the ransom in your country?☆14Updated last year
- Thor Artifacts for Velociraptor☆16Updated 11 months ago
- ☆27Updated 4 years ago
- Collection of generic YARA rules☆16Updated 11 months ago
- Detection rule validation☆41Updated last year
- ShellSweeping the evil.☆52Updated 11 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- ☆17Updated 9 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- Linux #rootkit and #malware revealer☆25Updated 10 months ago