jeFF0Falltrades/YARA-Signatures

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jeFF0Falltrades/YARA-Signatures)

jeFF0Falltrades / YARA-Signatures

A collection of my public YARA signatures for various malware families

☆30

Alternatives and similar repositories for YARA-Signatures

Users that are interested in YARA-Signatures are comparing it to the libraries listed below

Sorting:

fr0gger / Yara-Unprotect
View on GitHub
This repository regroups the Yara Rules for the Unprotect Project
☆26Nov 19, 2020Updated 5 years ago
jeFF0Falltrades / IoCs
View on GitHub
A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
☆29Jun 11, 2020Updated 5 years ago
h3x2b / yara-rules
View on GitHub
Yara rules for detecting malware
☆23Sep 9, 2025Updated 5 months ago
kevthehermit / YaraRules
View on GitHub
My Yara Rules Collection
☆52Feb 7, 2016Updated 10 years ago
jeFF0Falltrades / Malware-Writeups
View on GitHub
A collection of my reverse engineering and malware analysis write-ups
☆21Dec 11, 2020Updated 5 years ago
CyberDefenses / CDI_yara
View on GitHub
A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
☆18Sep 10, 2023Updated 2 years ago
VectraThreatLab / reyara
View on GitHub
Yara rules for quick reverse engineering of malware.
☆19Dec 9, 2015Updated 10 years ago
deadbits / yara-rules
View on GitHub
Collection of YARA signatures from individual research
☆44Nov 20, 2023Updated 2 years ago
stvemillertime / ConventionEngine
View on GitHub
ConventionEngine - A Yara Rulepack for PDB Path Hunting
☆37Mar 15, 2023Updated 2 years ago
malice-plugins / yara
View on GitHub
Malice Yara Plugin
☆30Sep 8, 2019Updated 6 years ago
tenable / yara-rules
View on GitHub
Repository of yara rules
☆60Nov 29, 2022Updated 3 years ago
codewatchorg / Burp-Yara-Rules
View on GitHub
Yara rules to be used with the Burp Yara-Scanner extension
☆49Jan 26, 2022Updated 4 years ago
fboldewin / YARA-rules
View on GitHub
Some YARA rules i will add from time to time
☆67Mar 25, 2023Updated 2 years ago
imp0rtp3 / yara-rules
View on GitHub
Yara rules written by me, for free use.
☆20Nov 26, 2021Updated 4 years ago
InQuest / yara-rules
View on GitHub
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
☆387May 11, 2022Updated 3 years ago
telekom-security / malware_analysis
View on GitHub
This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
☆118Dec 13, 2023Updated 2 years ago
lucanag / emotet
View on GitHub
☆10Sep 11, 2021Updated 4 years ago
montysecurity / InfraSpyder
View on GitHub
Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
☆28Apr 22, 2023Updated 2 years ago
MISP / misp-takedown
View on GitHub
A curses-style interface for automatic takedown notification based on MISP events.
☆20Dec 11, 2020Updated 5 years ago
novogen / pydis
View on GitHub
Python bindings for the Zydis disassembler library
☆17Jul 2, 2019Updated 6 years ago
citizenlab / malware-signatures
View on GitHub
Yara rules for malware families seen as part of targeted threats project
☆141Nov 17, 2016Updated 9 years ago
intezer / yara-rules
View on GitHub
☆128Feb 2, 2025Updated last year
DimopoulosElias / SimpleMimikatzObfuscator
View on GitHub
A set of commands to bypass Defender (and some other AVs)
☆20Jul 25, 2019Updated 6 years ago
RustyNoob-619 / 100-Days-of-YARA-2024
View on GitHub
☆21Apr 19, 2024Updated last year
plyara / plyara
View on GitHub
Parse YARA rules and operate over them more easily.
☆195Feb 6, 2025Updated last year
Hestat / lw-yara
View on GitHub
Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
☆107Mar 4, 2021Updated 5 years ago
100DaysofYARA / 2023
View on GitHub
Rules Shared by the Community from 100 Days of YARA 2023
☆78Apr 12, 2023Updated 2 years ago
hvs-consulting / ioc_signatures
View on GitHub
Repository with selected IOCs and YARA rules for threat hunting.
☆35May 21, 2025Updated 9 months ago
GDATASoftwareAG / TypeRefHasher
View on GitHub
CLI tool to compute the TypeRefHash for .NET binaries.
☆19Nov 10, 2021Updated 4 years ago
usualsuspect / yara_vt_mock
View on GitHub
Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
☆25May 29, 2023Updated 2 years ago
stairwell-inc / threat-research
View on GitHub
Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
☆23Jan 31, 2024Updated 2 years ago
MalGamy / YARA_Rules
View on GitHub
☆66Jan 27, 2023Updated 3 years ago
advanced-threat-research / IOCs
View on GitHub
Repository containing IOCs, CSV and MISP JSON from our blogs
☆83Aug 4, 2021Updated 4 years ago
blacklotuslabs / Research
View on GitHub
The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.
☆12Jun 18, 2021Updated 4 years ago
techbliss / Yara_Mailware_Quick_menu_scanner
View on GitHub
Work Fast With the pattern matching swiss knife for malware researchers.
☆38Mar 26, 2016Updated 9 years ago
thawsystems / docker-ida
View on GitHub
Containerized IDA Pro (Windows/Wine), DEPRECIATED, please use https://github.com/NyaMisty/docker-wine-ida
☆26Nov 23, 2017Updated 8 years ago
jaegeral / awesome-incident-response-pro-bono
View on GitHub
This repository is a curated list of pro bono incident response entities.
☆21Jun 21, 2023Updated 2 years ago
DissectMalware / xlrd2
View on GitHub
xlrd2 is a variant of xlrd that is actively maintained
☆23Aug 1, 2024Updated last year
CIRCL / yara-validator
View on GitHub
Validates yara rules and tries to repair the broken ones.
☆41Sep 5, 2020Updated 5 years ago