ditekshen / detectionLinks
Detection in the form of Yara, Snort and ClamAV signatures.
☆228Updated 7 months ago
Alternatives and similar repositories for detection
Users that are interested in detection are comparing it to the libraries listed below
Sorting:
- Collection of rules created using YARA-Signator over Malpedia☆131Updated 7 months ago
- Collection of private Yara rules.☆357Updated 2 months ago
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- Community modules for CAPE Sandbox☆100Updated last week
- ☆131Updated 3 weeks ago
- Repository of YARA rules made by Trellix ATR Team☆600Updated 3 months ago
- ☆130Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆376Updated 3 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Signatures and IoCs from public Volexity blog posts.☆355Updated last month
- Distributed malware processing framework based on Python, Redis and S3.☆430Updated 2 weeks ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆225Updated this week
- ☆127Updated 4 months ago
- ☆204Updated 2 weeks ago
- Sigma rules from Joe Security☆216Updated 7 months ago
- ☆516Updated 8 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆600Updated this week
- File analysis and management framework.☆85Updated last year
- Elastic Security Labs releases☆68Updated last week
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10☆118Updated 5 months ago
- YARA Rules I come across on the internet☆341Updated last year
- MBC content in markdown☆457Updated last week
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆184Updated this week
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- JPCERT/CC public YARA rules repository☆109Updated 6 months ago
- ☆68Updated 4 months ago
- The Sigma command line interface based on pySigma☆157Updated 2 months ago
- Sysmon EDR POC Build within Powershell to prove ability.☆225Updated 4 years ago