Alternatives and similar repositories for YARA-Signatures

Users that are interested in YARA-Signatures are comparing it to the libraries listed below

• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆45Updated 2 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆26Updated 5 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 5 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆98Updated 2 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆40Updated 5 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated 2 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated 2 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆79Updated 4 years ago
• PwCUK-CTO / rtfsig
  A tool to help malware analysts signature unique parts of RTF documents
  ☆29Updated 11 months ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆39Updated 5 months ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆20Updated 5 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 4 years ago
• h3x2b / yara-rules
  Yara rules for detecting malware
  ☆23Updated 3 months ago
• gitunique / cti-scripts
  Scripts for accessing and transforming cyber threat intelligence
  ☆26Updated 10 years ago
• lprat / static_file_analysis
  Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
  ☆50Updated 2 years ago
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated 2 years ago
• ruppde / yara_rules
  Yara rules
  ☆22Updated 2 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 3 years ago
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated 2 years ago
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆56Updated 4 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 3 years ago
• hvs-consulting / ioc_signatures
  Repository with selected IOCs and YARA rules for threat hunting.
  ☆35Updated 7 months ago
• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 7 years ago
• mandiant / goauditparser
  ☆46Updated 2 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated last week
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 8 years ago
• mlodic / ursnif_beacon_decryptor
  Ursnif beacon decryptor
  ☆27Updated 2 years ago
• CERT-Polska / karton-misp-pusher
  ☆16Updated last year