nccgroup/yaml2yara external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nccgroup/yaml2yara

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nccgroup/yaml2yara)

Close

nccgroup / yaml2yaraView on GitHubMore

• External links
• Readme badge

Generate bulk YARA rules from YAML input

☆22Feb 3, 2020Updated 6 years ago

Alternatives and similar repositories for yaml2yara

Users that are interested in yaml2yara are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• matthewdunwoody / PS_logging_reg

  View on GitHub
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Jun 20, 2016Updated 9 years ago
• CIRCL / ssdc

  View on GitHub
  ssdeep based clustering tool
  ☆14Jan 17, 2016Updated 10 years ago
• a4lg / fast-ssdeep-clus

  View on GitHub
  Parallel ssdeep clustering kit
  ☆20Dec 24, 2017Updated 8 years ago
• x41x41x90 / pm_shredder

  View on GitHub
  Coming to a place near you.....
  ☆25Jun 29, 2015Updated 10 years ago
• egaus / malicious_url_analysis

  View on GitHub
  ☆18Jun 8, 2018Updated 7 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• zom3y3 / ssdc

  View on GitHub
  ssdeep cluster analysis for malware files
  ☆31Jun 5, 2020Updated 5 years ago
• alexander-hanel / ida_yara

  View on GitHub
  A python script that can be used to scan data within in an IDB using Yara.
  ☆23Sep 4, 2018Updated 7 years ago
• Intevation / intelmq-fody

  View on GitHub
  Web interface to IntelMQ
  ☆10Sep 10, 2025Updated 6 months ago
• karttoon / binsequencer

  View on GitHub
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆80Jan 2, 2022Updated 4 years ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago
• dhondta / malicious-macro-tester

  View on GitHub
  CLI tool for testing Office documents with macros using MaliciousMacroBot
  ☆12Dec 3, 2023Updated 2 years ago
• abhinavbom / clara

  View on GitHub
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆33Jan 14, 2026Updated 2 months ago
• mpars0ns / scansio-sonar-es

  View on GitHub
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33May 14, 2016Updated 9 years ago
• AlienVault-OTX / yabin

  View on GitHub
  A Yara rule generator for finding related samples and hunting
  ☆162Sep 11, 2022Updated 3 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• CZ-NIC / convey

  View on GitHub
  CSV processing and web related data types mutual conversion
  ☆17Feb 24, 2026Updated last month
• CIRCL / bgpranking-redis-api

  View on GitHub
  API to access the Redis database of a BGP Ranking instance.
  ☆17Dec 11, 2017Updated 8 years ago
• jaegeral / osint_to_timesketch

  View on GitHub
  Virustotal Data to Timesketch
  ☆16Feb 28, 2019Updated 7 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 8 years ago
• binarlyhq / binarly-sdk

  View on GitHub
  Binarly SDK v1
  ☆14Dec 18, 2016Updated 9 years ago
• jackson5sec / ShimDB

  View on GitHub
  Shim database persistence (Fin7 TTP)
  ☆37Feb 25, 2020Updated 6 years ago
• MISP / yara-misp

  View on GitHub
  Export MISP attributes in Yara
  ☆12Sep 15, 2017Updated 8 years ago
• CERT-Bund / yara-exporter

  View on GitHub
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Mar 27, 2017Updated 9 years ago
• swackhamer / vt_notification_puller

  View on GitHub
  VirusTotal Intelligence Notification Puller
  ☆28Jun 29, 2016Updated 9 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• PUNCH-Cyber / YaraGuardian

  View on GitHub
  Django web interface for managing Yara rules
  ☆196Jul 28, 2018Updated 7 years ago
• EricZimmerman / USBDevices

  View on GitHub
  Get USB Devices from Registry hives
  ☆22Nov 15, 2021Updated 4 years ago
• SparkITSolutions / phoenix

  View on GitHub
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆107May 22, 2020Updated 5 years ago
• scsich / phagescan

  View on GitHub
  An open source virus scan aggregation framework.
  ☆25Apr 25, 2014Updated 11 years ago
• karttoon / iocs

  View on GitHub
  IoC's, PCRE's, YARA's etc
  ☆23Mar 25, 2025Updated last year
• bonifield / volatilityGrapher

  View on GitHub
  Force-Directed Graph Generator for Volatility Ouputs
  ☆26Mar 3, 2019Updated 7 years ago
• certsocietegenerale / abuse_finder

  View on GitHub
  Find abuse contacts for observables
  ☆69Nov 10, 2022Updated 3 years ago
• nccgroup / Royal_APT

  View on GitHub
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Mar 16, 2018Updated 8 years ago
• malice-plugins / pescan

  View on GitHub
  Malice PExecutable Plugin
  ☆16Mar 19, 2021Updated 5 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• SyFi / cve-2017-0199

  View on GitHub
  ☆12Apr 13, 2017Updated 8 years ago
• cylance / GetNETGUIDs

  View on GitHub
  Extract GUIDs from .NET assemblies
  ☆21Jun 15, 2016Updated 9 years ago
• matonis / yara_tools

  View on GitHub
  Create an entire YARA rule via Python? Whhhhhhaatttt?
  ☆74Jan 12, 2019Updated 7 years ago
• mattnotmitt / libyara-wasm

  View on GitHub
  PoC compilation of libyara into WASM, for potential future CyberChef integration
  ☆14Sep 18, 2022Updated 3 years ago
• Xen0ph0n / YaraGenerator

  View on GitHub
  Automatic Yara Rule Generation
  ☆333Feb 2, 2016Updated 10 years ago
• rpgeeganage / audit-node-modules-with-yara

  View on GitHub
  Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles
  ☆20Mar 24, 2021Updated 5 years ago
• Neo23x0 / panopticon

  View on GitHub
  A YARA Rule Performance Measurement Tool
  ☆61Feb 26, 2024Updated 2 years ago