Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
☆17Feb 6, 2025Updated last year
Alternatives and similar repositories for siglearn
Users that are interested in siglearn are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Vovk is framework of tools that include a WinDbg extension that generates in-depth YARA rules for malware.☆24Aug 26, 2024Updated last year
- YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…☆26Oct 20, 2022Updated 3 years ago
- An extension of the sigma standard to include security metrics.☆16May 18, 2023Updated 3 years ago
- Some resources to facilitate my blog on auditd for security monitoring☆13Mar 23, 2023Updated 3 years ago
- A simple way of detecting multithreaded exfiltration in Zeek.☆15May 1, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- BGNN4VD: Constructing Bidirectional Graph Neural-Network for Vulnerability Detection☆10Oct 2, 2020Updated 5 years ago
- Cloned from now gone Digitalbond page.☆15Aug 23, 2016Updated 9 years ago
- Automatic generation of YARA rules from sample files.☆28Apr 10, 2025Updated last year
- Dumps all resources from a PE file (EXE, DLL, ...)☆11Jan 13, 2019Updated 7 years ago
- Python 3 library to build YARA rules.☆13Oct 24, 2021Updated 4 years ago
- Fixes and patches☆20Dec 3, 2020Updated 5 years ago
- This is a clone of an SVN repository at http://svn.code.sf.net/p/pyparsing/code. It had been cloned by http://svn2github.com/ , but the s…☆11Apr 23, 2017Updated 9 years ago
- Lightweight, secure and login like console display manager for X☆16Nov 1, 2021Updated 4 years ago
- Anything related to Ghidra☆12Apr 22, 2019Updated 7 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆33Feb 26, 2022Updated 4 years ago
- LD_PRELOAD Linux rootkit (x86 & ARM)☆26Apr 8, 2019Updated 7 years ago
- A collection of utilities to help with analysis on the command line.☆18Aug 9, 2024Updated last year
- Giga-byte Control Center (GCC) is a software package designed for improved user experience of Gigabyte hardware, often found in gaming an…☆35Feb 2, 2026Updated 3 months ago
- ☆16Mar 16, 2021Updated 5 years ago
- Golang bindings for macOS / OS X libproc☆15Jan 20, 2018Updated 8 years ago
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆13Oct 27, 2023Updated 2 years ago
- Hunt for SQLite files used by various applications☆31Mar 1, 2026Updated 2 months ago
- web安全机器学习入门☆13Jan 9, 2019Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A specialized implementation of the Hierarchical Navigable Small World (HNSW) data structure adapted for efficient nearest neighbor looku…☆12Apr 26, 2026Updated 3 weeks ago
- PerchLabs threat feed☆16Aug 23, 2021Updated 4 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Jun 28, 2023Updated 2 years ago
- Python bindings for yescrypt: memory-hard, NIST-compliant password hashing☆15Mar 9, 2024Updated 2 years ago
- A little joke Blue Screen of Death simulator (BSOD) for the Game Boy - now with LEDs!☆13Aug 11, 2024Updated last year
- golang版的dsinff-webspy☆27Dec 14, 2017Updated 8 years ago
- Event Log Analysis Tools☆31Sep 27, 2016Updated 9 years ago
- ☆13Apr 8, 2022Updated 4 years ago
- A tool to extract RTTI information from Delphi executables, written in pure Python☆23Mar 11, 2020Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- GhidraQuark bridges Quark Engine into Ghidra☆39Mar 9, 2021Updated 5 years ago
- IDA Pro plugin to aid with the analysis of native IIS modules☆21Aug 1, 2024Updated last year
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆70Dec 2, 2022Updated 3 years ago
- PeeringDB API package for Go☆21Feb 9, 2026Updated 3 months ago
- ☆13Dec 15, 2024Updated last year
- Aggregates all the mining pool lists available online (domains + IPs).☆28Feb 21, 2021Updated 5 years ago
- Releases for the Zui Insiders app.☆23Feb 17, 2025Updated last year