lprat / static_file_analysisLinks
Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
☆50Updated last year
Alternatives and similar repositories for static_file_analysis
Users that are interested in static_file_analysis are comparing it to the libraries listed below
Sorting:
- A collection of my public YARA signatures for various malware families☆29Updated 9 months ago
- Collection of YARA signatures from individual research☆44Updated last year
- Yara Based Detection Engine for web browsers☆48Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- ☆41Updated 2 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Telsy CTI Research Team☆57Updated 4 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago
- Tracking APT IOCs☆25Updated 4 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Community modules for FAME☆65Updated 4 months ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- VirusTotal Intelligence Search☆38Updated 5 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆48Updated 3 years ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- ☆34Updated 2 years ago
- A DFVFS Backed Forensic Viewer☆40Updated 5 years ago
- Web based Manager for Yara Rules☆58Updated 5 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 4 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago