Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.
☆148Feb 1, 2026Updated last month
Alternatives and similar repositories for yaralyzer
Users that are interested in yaralyzer are comparing it to the libraries listed below
Sorting:
- YARI is an interactive debugger for YARA Language.☆90Sep 10, 2025Updated 5 months ago
- Python 3 library to build YARA rules.☆13Oct 24, 2021Updated 4 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆12Oct 1, 2022Updated 3 years ago
- Python Library for ConfigExtractor☆15Feb 24, 2026Updated last week
- YARA rule analyzer to improve rule quality and performance☆113Jan 18, 2026Updated last month
- Cloud Exploit Framework☆112May 11, 2022Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- Monitor your target continuously for new subdomains!☆25Mar 18, 2023Updated 2 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆102May 11, 2022Updated 3 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Mar 21, 2023Updated 2 years ago
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆340Feb 7, 2025Updated last year
- A scanner that files with compromised or untrusted code signing certificates written in python.☆65Sep 6, 2023Updated 2 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆116Mar 2, 2026Updated last week
- Documents Exfiltration project for fun and educational purposes☆144Oct 10, 2023Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆54Apr 23, 2024Updated last year
- A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.☆58May 24, 2021Updated 4 years ago
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated last month
- Collection of private Yara rules.☆378Jan 28, 2026Updated last month
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆258Dec 27, 2022Updated 3 years ago
- AAD related enumeration in Nim☆131Sep 7, 2023Updated 2 years ago
- Enhance your malware detection with WAF + YARA (WAFARAY)☆108Sep 29, 2022Updated 3 years ago
- Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level☆26Jul 21, 2022Updated 3 years ago
- A guide on how to write fast and memory friendly YARA rules☆166Feb 11, 2025Updated last year
- High Octane Triage Analysis☆822Updated this week
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆144Updated this week
- Scripts, Yara rules and other files developed during malware investigations☆27Aug 19, 2022Updated 3 years ago
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated 9 months ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- Kill AV/EDR leveraging BYOVD attack☆394Jul 11, 2023Updated 2 years ago
- A dynamic unpacking tool☆148Sep 17, 2023Updated 2 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆387May 11, 2022Updated 3 years ago
- Passive-Recursive DNS daemon☆26Sep 20, 2024Updated last year
- Defanged Indicator of Compromise (IOC) Extractor.☆569Aug 28, 2024Updated last year
- DLL sideloading/proxying with Nim!☆173Dec 4, 2022Updated 3 years ago
- Symbol hash for ELF files☆115Feb 9, 2022Updated 4 years ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,272Mar 1, 2026Updated last week
- VSCode extension for the YARA pattern matching language☆63Jan 10, 2024Updated 2 years ago
- ☆115Feb 13, 2026Updated 3 weeks ago
- Extract C2 Traffic☆253Nov 25, 2024Updated last year