intezer / ssdeep-elastic
An example for implementation of ssdeep similarity search optimized with elasticsearch
☆35Updated 7 years ago
Alternatives and similar repositories for ssdeep-elastic:
Users that are interested in ssdeep-elastic are comparing it to the libraries listed below
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- Create an entire YARA rule via Python? Whhhhhhaatttt?☆74Updated 6 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- revised "peHash: A Novel Approach to Fast Malware Clustering"☆21Updated 8 years ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆11Updated last year
- A collection of my public YARA signatures for various malware families☆29Updated 7 months ago
- Web based Manager for Yara Rules☆57Updated 5 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Malice Yara Plugin☆30Updated 5 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 4 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- ☆19Updated 6 years ago
- Automatically exported from code.google.com/p/verify-sigs☆18Updated 8 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- My Yara Rules Collection☆52Updated 9 years ago
- ☆33Updated 4 years ago
- ☆44Updated 6 years ago
- A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.☆24Updated 6 years ago
- Proof-of-concept automated baremetal malware analysis framework.☆14Updated 9 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆29Updated 4 years ago
- Yara rules☆48Updated 11 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Binarly SDK v1☆13Updated 8 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago
- Parallel ssdeep clustering kit☆20Updated 7 years ago
- Yara rules for detecting malware☆23Updated 7 months ago