ditekshen / detectionLinks
Detection in the form of Yara, Snort and ClamAV signatures.
☆224Updated 7 months ago
Alternatives and similar repositories for detection
Users that are interested in detection are comparing it to the libraries listed below
Sorting:
- Collection of rules created using YARA-Signator over Malpedia☆129Updated 6 months ago
- Collection of private Yara rules.☆354Updated last month
- Automated YARA Rule Standardization and Quality Assurance Tool☆221Updated last week
- ☆130Updated this week
- A guide on how to write fast and memory friendly YARA rules☆143Updated 3 months ago
- ☆130Updated last year
- Community modules for CAPE Sandbox☆97Updated last week
- Elastic Security Labs releases☆66Updated last week
- Anything Sysmon related from the MSTIC R&D team☆153Updated 11 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆180Updated this week
- ☆69Updated 3 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated 3 weeks ago
- File analysis and management framework.☆83Updated last year
- Signatures and IoCs from public Volexity blog posts.☆354Updated 2 weeks ago
- Repository of YARA rules made by Trellix ATR Team☆596Updated 2 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆375Updated 3 years ago
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆248Updated 2 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- ☆201Updated last year
- simple YARA-based IOC scanner☆169Updated 3 months ago
- ☆544Updated last year
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆587Updated last week
- ☆127Updated 4 months ago
- The Sigma command line interface based on pySigma☆155Updated last month
- YARA Rules I come across on the internet☆340Updated last year
- AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10☆117Updated 4 months ago
- Live forensic artifacts collector☆166Updated 10 months ago
- Malware repository component for samples & static configuration with REST API interface.☆354Updated last month
- YARA rule analyzer to improve rule quality and performance☆101Updated last month