bartblaze / Yara-rules
Collection of private Yara rules.
☆344Updated 2 weeks ago
Alternatives and similar repositories for Yara-rules:
Users that are interested in Yara-rules are comparing it to the libraries listed below
- Repository of YARA rules made by Trellix ATR Team☆581Updated last week
- YARA Rules I come across on the internet☆335Updated 11 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆372Updated 2 years ago
- ☆514Updated 5 months ago
- ReversingLabs YARA Rules☆803Updated last week
- Sophos-originated indicators-of-compromise from published reports☆570Updated last month
- IOC from articles, tweets for archives☆313Updated last year
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆352Updated 2 months ago
- ☆124Updated 3 weeks ago
- Distributed malware processing framework based on Python, Redis and S3.☆403Updated 2 months ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆704Updated last month
- Detection in the form of Yara, Snort and ClamAV signatures.☆220Updated 4 months ago
- Sigma rules from Joe Security☆207Updated 4 months ago
- Malware repository component for samples & static configuration with REST API interface.☆341Updated this week
- Automated YARA Rule Standardization and Quality Assurance Tool☆200Updated this week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆568Updated this week
- Collection of rules created using YARA-Signator over Malpedia☆127Updated 4 months ago
- Rules generated from our investigations.☆192Updated this week
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆165Updated this week
- Signatures and IoCs from public Volexity blog posts.☆350Updated last month
- MBC content in markdown☆419Updated 2 months ago
- ☆130Updated last year
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆557Updated 2 months ago
- Volatility plugin for extracts configuration data of known malware☆487Updated last year
- Threat Hunting tool about Sysmon and graphs☆330Updated last year
- Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)☆435Updated last week
- ☆539Updated last year
- A collection of red team and adversary emulation resources developed and released by MITRE.☆498Updated 3 years ago
- Live forensic artifacts collector☆165Updated 8 months ago
- ☆200Updated last year