hvs-consulting / ioc_signatures
Repository with selected IOCs and YARA rules for threat hunting.
☆31Updated 3 weeks ago
Related projects: ⓘ
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆93Updated 2 weeks ago
- Simple yara rule manager☆64Updated last year
- A YARA Rule Performance Measurement Tool☆58Updated 6 months ago
- Malware similarity platform with modularity in mind.☆75Updated 3 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- A collection of my public YARA signatures for various malware families☆28Updated last month
- Links to malware-related YARA rules☆14Updated last year
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆36Updated last year
- Python based CLI for MalwareBazaar☆36Updated 9 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆74Updated 2 years ago
- Collection of YARA signatures from individual research☆41Updated 9 months ago
- Generate YARA rules for OOXML documents.☆37Updated last year
- Imphash-like calculation on Golang binaries☆48Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆57Updated last year
- Steezy - Ghetto Yara Generation☆15Updated last year
- Alternative YARA scanning engine☆66Updated 2 years ago
- Random hunting ordiented yara rules☆95Updated last year
- XOR Key Extractor☆48Updated last month
- Collection of scripts used to analyse malware or emails☆19Updated 3 years ago
- VSCode extension for the YARA pattern matching language☆60Updated 8 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆48Updated 5 months ago
- ☆23Updated 5 months ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Updated 7 months ago
- ☆15Updated 2 years ago
- ☆42Updated last year
- Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)☆19Updated this week
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- A mapping of used malware names to commonly known family names☆61Updated last year
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago