Detection Engineering with YARA
☆87Jan 6, 2024Updated 2 years ago
Alternatives and similar repositories for YARA_Detection_Engineering
Users that are interested in YARA_Detection_Engineering are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆24May 29, 2023Updated 2 years ago
- ☆18Feb 2, 2026Updated last month
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Nov 13, 2022Updated 3 years ago
- ☆78Sep 29, 2025Updated 5 months ago
- Steezy - Ghetto Yara Generation☆15Mar 27, 2023Updated 2 years ago
- UnpacMe IDA Byte Search☆29Nov 20, 2023Updated 2 years ago
- This is a collection of threat detection rules / rules engines that I have come across.☆297May 5, 2024Updated last year
- VSCode extension for the YARA pattern matching language☆63Jan 10, 2024Updated 2 years ago
- Cover various security approaches to attack techniques and also provides new discoveries about security breaches.☆485Apr 17, 2025Updated 11 months ago
- Rules shared by the community from 100 Days of YARA 2024☆89Jan 1, 2025Updated last year
- Sandbox feature upgrade with the help of wrapped samples☆76Jun 23, 2018Updated 7 years ago
- YARA Language Server☆74Feb 3, 2026Updated last month
- Yara Rules for Modern Malware☆78Mar 3, 2024Updated 2 years ago
- ☆85Nov 21, 2024Updated last year
- Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …☆26Jun 11, 2025Updated 9 months ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- A tool that automates regex generation for the x86 and x86-64 instruction sets☆74Apr 18, 2024Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆88Mar 11, 2026Updated last week
- ☆23May 24, 2024Updated last year
- My collection of scripts for Ghidra (https://github.com/NationalSecurityAgency/ghidra)☆10Sep 13, 2020Updated 5 years ago
- Converting data from services like Censys and Shodan to a common data model☆52Feb 22, 2026Updated last month
- Alternative YARA scanning engine☆73Aug 23, 2022Updated 3 years ago
- ☆11Jun 12, 2023Updated 2 years ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆258Nov 24, 2023Updated 2 years ago
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 6 months ago
- A guide on how to write fast and memory friendly YARA rules☆167Feb 11, 2025Updated last year
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆76Jan 6, 2026Updated 2 months ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- information about ransomware groups (Ransomware Analysis Notes)☆41Dec 26, 2023Updated 2 years ago
- ☆12Updated this week
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆16Apr 10, 2024Updated last year
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Mar 27, 2019Updated 6 years ago
- A list of RMMs designed to be used in automation to build alerts☆117Nov 9, 2025Updated 4 months ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 5 years ago
- Pure Go bindings for Zydis.☆13Jul 14, 2024Updated last year
- God Mode Detection Rules☆132Aug 8, 2024Updated last year
- Tools for inspecting YARA bytecode☆21Jul 1, 2020Updated 5 years ago