Create an entire YARA rule via Python? Whhhhhhaatttt?
☆74Jan 12, 2019Updated 7 years ago
Alternatives and similar repositories for yara_tools
Users that are interested in yara_tools are comparing it to the libraries listed below
Sorting:
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆80Jan 2, 2022Updated 4 years ago
- Security ML models encoded as Yara rules☆215Jul 6, 2023Updated 2 years ago
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- This repo is created to perform I/O Request Packet (IRP) driven ransomware analysis where the IRP logs were collected during ransomware e…☆11Aug 14, 2020Updated 5 years ago
- A minifilter driver to capture processes behavior from a filesystem prospective.☆16Oct 5, 2024Updated last year
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- Parsing of YARA rules into AST and building new rulesets in C++.☆129Jan 25, 2026Updated last month
- Parse YARA rules and operate over them more easily.☆194Feb 6, 2025Updated last year
- Low budget VirusTotal Intelligence Cosplay☆20Jan 6, 2022Updated 4 years ago
- Automatically generate AV byte signatures from sets of similar binaries.☆287Dec 10, 2024Updated last year
- Generate bulk YARA rules from YAML input�☆22Feb 3, 2020Updated 6 years ago
- ☆49Jan 13, 2020Updated 6 years ago
- Capture-Py is a malware analysis tool that makes a copy of any files deleted or modified in a given directory and sub-directories. It was…☆27Jun 28, 2017Updated 8 years ago
- A python library for building and using hash databases.☆22Feb 8, 2023Updated 3 years ago
- A Yara rule generator for finding related samples and hunting☆162Sep 11, 2022Updated 3 years ago
- ☆29Nov 22, 2023Updated 2 years ago
- A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…☆23Dec 12, 2021Updated 4 years ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆302Dec 27, 2023Updated 2 years ago
- ☆98Oct 7, 2020Updated 5 years ago
- Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…☆22Jul 14, 2019Updated 6 years ago
- A mapping of used malware names to commonly known family names☆62Feb 21, 2023Updated 3 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated last month
- VSCode extension for the YARA pattern matching language☆63Jan 10, 2024Updated 2 years ago
- ☆28Feb 7, 2021Updated 5 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆29Jun 11, 2020Updated 5 years ago
- Yet Another YARA rule Generator☆65Oct 9, 2018Updated 7 years ago
- IDA Pro resources, scripts, and configurations☆167Feb 23, 2026Updated last week
- Collaborative malware exchange repository.☆34Nov 21, 2024Updated last year
- Merge all Yara rules from official Yara github repository in one .yar file☆31Jun 22, 2018Updated 7 years ago
- conti locker ransomware source code leak☆31Mar 5, 2022Updated 3 years ago
- XML to a python dictionary☆11Sep 13, 2020Updated 5 years ago
- ☆10Dec 30, 2020Updated 5 years ago
- A text classifier in Python using classification algorithms of machine learning (Support vector machines, Naïve Bayes classifier) to dete…☆11Dec 11, 2017Updated 8 years ago
- ☆12Aug 4, 2018Updated 7 years ago
- Example of using Protractor with Cucumber and Page Objects☆10Apr 12, 2017Updated 8 years ago
- ☆152Jun 5, 2024Updated last year
- ☆39Feb 12, 2020Updated 6 years ago
- Training and testing pipeline for ransomware classification based on screenshots of the splash screens or ransom notes (https://arxiv.org…☆11Jul 19, 2020Updated 5 years ago
- 20 python libs and more: read me first!☆12Apr 11, 2024Updated last year