ditekshen / detectionLinks
Detection in the form of Yara, Snort and ClamAV signatures.
☆237Updated 9 months ago
Alternatives and similar repositories for detection
Users that are interested in detection are comparing it to the libraries listed below
Sorting:
- Collection of private Yara rules.☆368Updated last month
- Collection of rules created using YARA-Signator over Malpedia☆133Updated 9 months ago
- A guide on how to write fast and memory friendly YARA rules☆151Updated 6 months ago
- ☆130Updated last year
- ☆141Updated last month
- Community modules for CAPE Sandbox☆101Updated last week
- Signatures and IoCs from public Volexity blog posts.☆354Updated 3 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆238Updated this week
- Elastic Security Labs releases☆80Updated last month
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 3 months ago
- Anything Sysmon related from the MSTIC R&D team☆156Updated last year
- File analysis and management framework.☆86Updated last year
- ☆69Updated 6 months ago
- ☆211Updated 2 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆381Updated 3 years ago
- Threat Intel IoCs + bits and pieces of dark matter☆412Updated 2 months ago
- Sysmon EDR POC Build within Powershell to prove ability.☆226Updated 4 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆138Updated last year
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆194Updated last week
- Encyclopedia for Executables☆449Updated 3 years ago
- Live forensic artifacts collector☆170Updated last year
- JPCERT/CC public YARA rules repository☆110Updated 8 months ago
- Repository of YARA rules made by Trellix ATR Team☆608Updated 5 months ago
- Welcome to the SEKOIA.IO Community repository!☆162Updated last month
- Sigma rules from Joe Security☆218Updated 9 months ago
- ☆129Updated 6 months ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆255Updated 2 years ago
- Python scripts for Malware Bazaar☆154Updated last year
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆620Updated last week