A collection of my yara rules
☆34Jul 11, 2023Updated 2 years ago
Alternatives and similar repositories for yara-rules
Users that are interested in yara-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A collection of small scripts and tools for deobfuscation and malware analysis.☆67Mar 27, 2023Updated 3 years ago
- A tool that adds reproducible UUIDs to YARA rules☆13May 15, 2026Updated 2 weeks ago
- Indicators of compromise☆19May 18, 2026Updated last week
- A Compiler from Sigma rules to VQL☆19May 18, 2026Updated last week
- Ghosting-AMSI☆18Apr 30, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- ☆12Jun 6, 2025Updated 11 months ago
- Collection of generic YARA rules☆16Mar 18, 2026Updated 2 months ago
- ☆22Mar 4, 2025Updated last year
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆22Apr 16, 2021Updated 5 years ago
- Collection of rules created using YARA-Signator over Malpedia☆143May 18, 2026Updated last week
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆21Mar 22, 2024Updated 2 years ago
- Documentation site for Velociraptor☆71Updated this week
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆79Jan 26, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Repository with selected IOCs and YARA rules for threat hunting.☆35Apr 8, 2026Updated last month
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- multi-threaded script uses VirusTotal and AbuseIPDB APIs and generate an excel with all needed data☆10Mar 14, 2023Updated 3 years ago
- Yara rules☆21Mar 27, 2023Updated 3 years ago
- Injected hook for the [defunct] UE3 game, Hawken. The goal of this project is to reimplement the stripped dedicated server functionality …☆13Jun 24, 2023Updated 2 years ago
- Hardening script for Windows (Domain mode or without domain)☆16Sep 18, 2025Updated 8 months ago
- A collaboration effort by the DFIR community to provide definitions (sometimes multiple) for common forensic terms!☆26Dec 1, 2022Updated 3 years ago
- Top hashpwn rules☆20Dec 12, 2025Updated 5 months ago
- I have documented all of the AMSI patches that I learned till now☆73Nov 4, 2025Updated 6 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Pwn utilities for Rust.☆11May 15, 2026Updated 2 weeks ago
- .NET deobfuscator and unpacker (with a control flow unflattener for DoubleZero added).☆29Jun 14, 2022Updated 3 years ago
- Personal Storage Table implementation in Go/Golang☆37May 20, 2026Updated last week
- A tool to create randomly insecure file shares that also contain unsecured credential files☆49Feb 16, 2026Updated 3 months ago
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 3 years ago
- Yet, Another Packer/Loader☆25Feb 26, 2023Updated 3 years ago
- TIBER-Cases is a project created to give cases of The Hive platform for Threat Intelligence Analysts mainly. All the cases are mapped to …☆27Jul 13, 2022Updated 3 years ago
- ☆66Sep 1, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Feb 24, 2023Updated 3 years ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆22Mar 26, 2023Updated 3 years ago
- A repository to share publicly available Velociraptor detection content☆203May 21, 2026Updated last week
- A cyber threat intelligence chatbot that ingested 2200+ reports from vx-underground.☆33Apr 1, 2024Updated 2 years ago
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- ☆16Dec 31, 2016Updated 9 years ago
- Unpacker for Agile.NET☆13Mar 12, 2023Updated 3 years ago