codeyourweb / irma
enpoint detection / live analysis & sandbox host / signatures quality test
☆44Updated 4 years ago
Alternatives and similar repositories for irma:
Users that are interested in irma are comparing it to the libraries listed below
- Go library for ETW (Event Tracing for Windows) events processing☆65Updated 2 years ago
- gyp: A pure Go YARA parser☆107Updated last year
- A Go implementation and parser for Sigma rules.☆88Updated 8 months ago
- Golang Parser for Microsoft Event Logs☆102Updated 3 months ago
- Sigma Engine implementation in TypeScript☆27Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Collect autorun records from running system☆61Updated 3 years ago
- A Golang Registry parser☆14Updated 3 months ago
- Imphash-like calculation on Golang binaries☆49Updated 2 years ago
- The core backend server handling API requests and task management☆38Updated last week
- A Go implementation of JARM☆118Updated 2 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Updated 3 years ago
- Go implementation of an Extensible Storage Engine parser☆29Updated 2 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated 2 years ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆57Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 2 years ago
- THOR Thunderstorm Collectors☆24Updated last month
- A golang implementation of a prefetch parser.☆19Updated 7 months ago
- JPCERT/CC public YARA rules repository☆106Updated 4 months ago
- ☆44Updated last year
- Lightweight Python-Based Malware Analysis Pipeline☆34Updated last week
- A home for detection content developed by the delivr.to team☆69Updated 2 months ago
- YARA rule analyzer to improve rule quality and performance☆99Updated 3 weeks ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- ☆16Updated last month