elastic / labs-releasesLinks
Elastic Security Labs releases
☆82Updated 3 months ago
Alternatives and similar repositories for labs-releases
Users that are interested in labs-releases are comparing it to the libraries listed below
Sorting:
- Collection of rules created using YARA-Signator over Malpedia☆135Updated 10 months ago
- ☆144Updated 2 months ago
- A guide on how to write fast and memory friendly YARA rules☆153Updated 7 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆243Updated last week
- YARA rule analyzer to improve rule quality and performance☆103Updated 5 months ago
- JPCERT/CC public YARA rules repository☆110Updated 9 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- Welcome to the SEKOIA.IO Community repository!☆164Updated 2 months ago
- Repository of Yara Rules☆122Updated 2 weeks ago
- A specification and style guide for YARA rules☆56Updated last year
- A C# based tool for analysing malicious OneNote documents☆116Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆184Updated 2 years ago
- ☆75Updated this week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆80Updated 4 months ago
- yara detection rules for hunting with the threathunting-keywords project☆149Updated 4 months ago
- Anything Sysmon related from the MSTIC R&D team☆156Updated last year
- ☆253Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆86Updated 9 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆138Updated last year
- Detection Engineering with YARA☆87Updated last year
- pySigma Elasticsearch backend☆54Updated last week
- LOKI2 - Simple IOC and YARA Scanner☆102Updated 3 months ago
- ☆240Updated 3 months ago
- File analysis and management framework.☆88Updated 2 years ago
- Windows symbol tables for Volatility 3☆90Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated 8 months ago
- Dump quarantined files from Windows Defender☆67Updated 3 years ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆88Updated 3 weeks ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated 2 years ago