matonis / yara_tools
Create an entire YARA rule via Python? Whhhhhhaatttt?
☆72Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for yara_tools
- Ursnif beacon decryptor☆27Updated last year
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated last year
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆74Updated 2 years ago
- A collection of my public YARA signatures for various malware families☆29Updated last month
- Handy scripts to speed up malware analysis☆35Updated last year
- A mapping of used malware names to commonly known family names☆61Updated last year
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Community modules for FAME☆64Updated last week
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- A taxonomy and dictionary of malware behaviors.☆42Updated 5 years ago
- TA505 unpacker Python 2.7☆46Updated 4 years ago
- Web based Manager for Yara Rules☆57Updated 4 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Collection of YARA signatures from individual research☆42Updated 11 months ago
- A Yara rule generator for finding related samples and hunting☆157Updated 2 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆79Updated 3 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆44Updated 2 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- Malware similarity platform with modularity in mind.☆76Updated 3 years ago
- ☆57Updated 3 years ago
- Various capabilities for static malware analysis.☆75Updated 2 months ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 5 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 9 months ago
- A YARA Rule Performance Measurement Tool☆58Updated 8 months ago
- PE Import Hash Generator☆74Updated 7 years ago
- Fuzzy Hash calculated from import API of PE files☆87Updated 2 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆60Updated 10 months ago
- Lazy Office Analyzer☆118Updated 7 years ago
- Process HTTP Pcaps With YARA☆101Updated 11 years ago