mikesxrs / Open-Source-YARA-rules
YARA Rules I come across on the internet
☆334Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for Open-Source-YARA-rules
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆364Updated 2 years ago
- Repository of YARA rules made by Trellix ATR Team☆570Updated 11 months ago
- Automatic Yara Rule Generation☆332Updated 8 years ago
- IOC from articles, tweets for archives☆311Updated 11 months ago
- Indicators from Unit 42 Public Reports☆702Updated last month
- YARA malware query accelerator (web frontend)☆414Updated this week
- ReversingLabs YARA Rules☆770Updated last month
- Malware Configuration And Payload Extraction☆747Updated this week
- Clusters and elements to attach to MISP events or attributes (like threat actors)☆532Updated this week
- 16,432 Free Yara rules created by☆380Updated 5 years ago
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆300Updated 5 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆543Updated this week
- Defanged Indicator of Compromise (IOC) Extractor.☆506Updated 2 months ago
- Malware repository component for samples & static configuration with REST API interface.☆328Updated this week
- Volatility plugin for extracts configuration data of known malware☆485Updated 11 months ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆463Updated 5 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆429Updated last year
- User guide of MISP☆259Updated last month
- Yara Rule Analyzer and Statistics☆359Updated last year
- c2 traffic☆188Updated last year
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆704Updated last year
- Collection of private Yara rules.☆328Updated this week
- Security ML models encoded as Yara rules☆211Updated last year
- Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.☆346Updated 3 years ago
- Modified edition of cuckoo☆395Updated 7 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆285Updated 7 years ago
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆234Updated last year
- FAME Automates Malware Evaluation☆862Updated this week
- Repository of modules and signatures contributed by the community☆324Updated last year
- Django web interface for managing Yara rules☆190Updated 6 years ago