imp0rtp3 / yara-rules
Yara rules written by me, for free use.
☆17Updated 2 years ago
Related projects: ⓘ
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆21Updated 7 months ago
- Yara rules☆18Updated last year
- ☆12Updated 3 years ago
- ☆31Updated 2 years ago
- Collection of YARA signatures from individual research☆41Updated 10 months ago
- Generate YARA rules for OOXML documents.☆37Updated last year
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆24Updated 2 years ago
- D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit☆29Updated 2 months ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 3 years ago
- ☆22Updated last year
- ☆34Updated last year
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- NTFS file system specimens☆13Updated last year
- Links to malware-related YARA rules☆14Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆74Updated 2 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 3 years ago
- ☆19Updated last year
- Automatic detection engineering technical state compliance☆49Updated 2 months ago
- Imphash-like calculation on Golang binaries☆48Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated last year
- Standardized Malware Analysis Tool☆51Updated 3 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated last year
- volatility-runner is a command line application designed to speed up memory forensics using the volatility framework, primarily for insta…☆11Updated 5 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆19Updated 2 years ago