mitre / yararules-python
Easily scan with multiple yara rules from different sources.
☆12Updated 6 months ago
Related projects: ⓘ
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 3 years ago
- ☆19Updated 6 years ago
- ☆13Updated this week
- Yara Scanner For IMAP Feeds and saved Streams☆27Updated 4 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆52Updated 6 years ago
- Crack your macros like the math pros.☆33Updated 7 years ago
- Yara rules for detecting malware☆21Updated 2 weeks ago
- Generate bulk YARA rules from YAML input☆21Updated 4 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆22Updated 7 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Tools☆13Updated last year
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 9 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Updated 5 months ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆16Updated 8 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆34Updated 8 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 5 years ago
- Command-line Interface for Binar.ly☆37Updated 7 years ago
- Extract GUIDs from .NET assemblies☆21Updated 8 years ago
- Plugins for the Viper Framework☆14Updated 4 years ago
- Python emulator for Excel XLM macros.☆18Updated 4 years ago
- Some rules, scripts of some use to us☆9Updated this week
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆21Updated 7 months ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- ☆16Updated 9 years ago
- Yaras Random☆18Updated 5 years ago
- Endpoint monitoring stack.☆17Updated 8 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago