bartblaze / Yara-rules
Collection of private Yara rules.
☆343Updated this week
Alternatives and similar repositories for Yara-rules:
Users that are interested in Yara-rules are comparing it to the libraries listed below
- Repository of YARA rules made by Trellix ATR Team☆577Updated last year
- Sophos-originated indicators-of-compromise from published reports☆569Updated last month
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆372Updated 2 years ago
- ReversingLabs YARA Rules☆796Updated 2 weeks ago
- ☆515Updated 5 months ago
- IOC from articles, tweets for archives☆313Updated last year
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆568Updated this week
- MBC content in markdown☆411Updated 2 months ago
- Detection in the form of Yara, Snort and ClamAV signatures.☆220Updated 4 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆196Updated this week
- YARA Rules I come across on the internet☆335Updated 10 months ago
- Malware repository component for samples & static configuration with REST API interface.☆340Updated this week
- Collection of rules created using YARA-Signator over Malpedia☆127Updated 4 months ago
- ☆122Updated 2 weeks ago
- ☆130Updated last year
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆704Updated last month
- Malduck is your ducky companion in malware analysis journeys☆326Updated 8 months ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆350Updated last month
- Distributed malware processing framework based on Python, Redis and S3.☆403Updated last month
- Sigma rules from Joe Security☆207Updated 4 months ago
- Live forensic artifacts collector☆165Updated 8 months ago
- YARA malware query accelerator (web frontend)☆421Updated this week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆577Updated 10 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆165Updated this week
- Volatility plugin for extracts configuration data of known malware☆487Updated last year
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆281Updated last month
- Rules generated from our investigations.☆193Updated this week
- ☆200Updated last year
- Signatures and IoCs from public Volexity blog posts.☆349Updated last month
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆553Updated last month