anyrun / YARALinks
☆19Updated 7 months ago
Alternatives and similar repositories for YARA
Users that are interested in YARA are comparing it to the libraries listed below
Sorting:
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- Sigma rules converted for direct use with Zircolite☆13Updated this week
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- Static Decryptor for IcedID Malware☆18Updated 2 years ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆21Updated last year
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Linux #rootkit and #malware revealer☆26Updated 10 months ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- ☆22Updated 8 months ago
- ☆17Updated 10 months ago
- A YARA & Malware Analysis Toolkit written in Rust.☆33Updated last week
- Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.☆24Updated 2 years ago
- Quick ESXi Log Parser☆21Updated 5 months ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- An extension of the sigma standard to include security metrics.☆15Updated 2 years ago
- A quick reference guide for python script development in DFIR☆17Updated last year
- ESXi Cyber Security Incident Response Script☆23Updated 9 months ago
- Thor Artifacts for Velociraptor☆16Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ☆24Updated 2 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 10 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆65Updated last week
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated this week
- Yara Rules for Modern Malware☆77Updated last year
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆44Updated 3 months ago