Alternatives and similar repositories for easeYARA

Users that are interested in easeYARA are comparing it to the libraries listed below

• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated last year
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• fraktalcyber / Fransom
  Fraktal's Ransomware Emulator
  ☆101Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆118Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Updated 4 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆24Updated 2 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆46Updated 2 years ago
• jfmaes / talks-cons
  aggregated repo for all conferences and talks I am giving
  ☆17Updated 4 years ago
• mandiant / gootloader
  Collection of scripts used to deobfuscate GOOTLOADER malware samples.
  ☆73Updated last month
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆57Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• slaughterjames / excelpeek
  ☆38Updated 3 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆74Updated 3 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆40Updated 4 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated last year
• Squiblydoo / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆19Updated 3 years ago
• NextronSystems / TA-aurora
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Updated 3 years ago
• vc0RExor / Quick-Analysis
  Quick analysis focusing on most important of a Malware or a Threat
  ☆41Updated 2 years ago
• alwashali / detection-validation
  Detection rule validation
  ☆40Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 4 months ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆58Updated 3 years ago