yara detection rules for hunting with the threathunting-keywords project
☆161May 11, 2025Updated 11 months ago
Alternatives and similar repositories for ThreatHunting-Keywords-yara-rules
Users that are interested in ThreatHunting-Keywords-yara-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sigma detection rules for hunting with the threathunting-keywords project☆60Mar 2, 2025Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆655Aug 4, 2025Updated 9 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆198Dec 20, 2024Updated last year
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 6 months ago
- Awesome Security lists for SOC/CERT/CTI☆1,441Updated this week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Collection of rules created using YARA-Signator over Malpedia☆143Jan 6, 2026Updated 4 months ago
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆26Oct 3, 2023Updated 2 years ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆164Updated this week
- Collection of YARA signatures from individual research☆44Nov 20, 2023Updated 2 years ago
- 🛡️ SIGMA Detection Engineering Platform A comprehensive AI-powered detection engineering platform for security teams to explore MITRE AT…☆45Jun 28, 2025Updated 10 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆480Oct 29, 2025Updated 6 months ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆428Nov 8, 2025Updated 6 months ago
- Detection in the form of Yara, Snort and ClamAV signatures.☆254Nov 1, 2024Updated last year
- Indicators of compromise☆17Jan 29, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- ShellSweeping the evil.☆181Nov 25, 2024Updated last year
- A repository of my own Sigma detection rules.☆165Nov 25, 2025Updated 5 months ago
- Rules shared by the community from 100 Days of YARA 2024☆90Jan 1, 2025Updated last year
- A preconfigured Velociraptor triage collector☆76Updated this week
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆130Apr 6, 2024Updated 2 years ago
- A specification and style guide for YARA rules☆73Feb 17, 2024Updated 2 years ago
- Welcome to the SEKOIA.IO Community repository!☆184Updated this week
- ☆82Sep 29, 2025Updated 7 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 6 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆55Mar 11, 2025Updated last year
- Storage for the IOCs I collect☆11Apr 3, 2026Updated last month
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆806Apr 6, 2026Updated last month
- CarbonBlack EDR detection rules and response actions☆73Sep 10, 2024Updated last year
- This Repository consists all Public Cheatsheets created by BlackPerl DFIR Content Team☆20Oct 9, 2024Updated last year
- Documentation and scripts to properly enable Windows event logs.☆701Oct 3, 2025Updated 7 months ago
- God Mode Detection Rules☆133Aug 8, 2024Updated last year
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 5 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆121May 26, 2025Updated 11 months ago
- An opensource sigma conversion tool built using pysigma☆164Apr 22, 2026Updated 2 weeks ago
- ☆23Apr 20, 2026Updated 2 weeks ago
- Short deep dive into Threat Hunting on AWS☆19Oct 15, 2023Updated 2 years ago
- ReversingLabs YARA Rules☆913Nov 3, 2025Updated 6 months ago
- Repo for experimenting and testing MCP server builds for CTI-related research.☆27May 13, 2025Updated 11 months ago
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆812Jan 14, 2026Updated 3 months ago