binalyze / tigmaLinks
Sigma Engine implementation in TypeScript
☆28Updated 2 years ago
Alternatives and similar repositories for tigma
Users that are interested in tigma are comparing it to the libraries listed below
Sorting:
- Low budget VirusTotal Intelligence Cosplay☆20Updated 3 years ago
- XOR Key Extractor☆50Updated 9 months ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- pocket guide for core threat hunting concepts☆23Updated 5 years ago
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 4 years ago
- A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.☆20Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- Website crawler with YARA detection☆88Updated last year
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)☆15Updated 4 years ago
- Liberating dem proprietary APT implants☆20Updated 5 years ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- Random hunting ordiented yara rules☆96Updated 2 years ago
- PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.☆56Updated 3 years ago
- A repo for security analytics & threat hunting resources☆21Updated 6 years ago
- Collection of YARA signatures from individual research☆44Updated last year
- References for FIRST CTI 2019 Symposium presentation☆22Updated 6 years ago
- Yara rules☆21Updated 2 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- ☆24Updated 2 years ago
- Standardized Malware Analysis Tool☆52Updated 4 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Simple yara rule manager☆66Updated 2 years ago
- Imphash-like calculation on Golang binaries☆49Updated 2 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- ☆45Updated 2 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago