nogoodconfig/pyarascanner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nogoodconfig/pyarascanner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nogoodconfig/pyarascanner)

Close

nogoodconfig / pyarascannerView on GitHubMore

• External links
• Readme badge

A simple many-rules to many-files YARA scanner for incident response or malware zoos.

☆27Jun 3, 2018Updated 7 years ago

Alternatives and similar repositories for pyarascanner

Users that are interested in pyarascanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• akky2892 / Cyber-Threat-Hunting

  View on GitHub
  Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…
  ☆15May 18, 2019Updated 6 years ago
• Shazam2morrow / semantic-analysis

  View on GitHub
  Semantic analysis with neural networks
  ☆10Feb 18, 2021Updated 5 years ago
• iAbdullahMughal / dscan

  View on GitHub
  D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit
  ☆29Jan 10, 2026Updated 2 months ago
• WithSecureLabs / snake-core

  View on GitHub
  snake-core - the real snake
  ☆15Jul 11, 2023Updated 2 years ago
• DissectMalware / base64_substring

  View on GitHub
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Jul 13, 2018Updated 7 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• JeremyBlackthorne / PE-Runtime-Data-Structures

  View on GitHub
  ☆18Apr 4, 2019Updated 6 years ago
• G4LB1T / LazyS

  View on GitHub
  PoC malware built by copy-paste
  ☆25Apr 10, 2021Updated 4 years ago
• McL0vinn / Windows-Forensic-Examination-and-Threat-Hunting

  View on GitHub
  Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…
  ☆15Aug 15, 2022Updated 3 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap

  View on GitHub
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Jul 14, 2019Updated 6 years ago
• RoqueNight / DefenderATP-Proactive-Threat-Hunting-Queries-KQL

  View on GitHub
  List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…
  ☆26Jun 30, 2021Updated 4 years ago
• Kalium / Snakepit

  View on GitHub
  A scalable framework for binary analysis in a containered environment.
  ☆13May 20, 2019Updated 6 years ago
• Hestat / lw-yara

  View on GitHub
  Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
  ☆108Mar 4, 2021Updated 5 years ago
• pr0xylife / Bumblebee

  View on GitHub
  ☆15Oct 3, 2024Updated last year
• DearBytes / Opensource-Endpoint-Monitoring

  View on GitHub
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆35Jul 8, 2019Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• woanware / wmi-parser

  View on GitHub
  Parses the WMI object database....looking for persistence
  ☆34Dec 12, 2019Updated 6 years ago
• gamelinux / activedns

  View on GitHub
  An active domain name query tool to help keep track of domain name movements...
  ☆16Mar 28, 2021Updated 4 years ago
• sebmarchand / pyetw

  View on GitHub
  ☆13Apr 6, 2016Updated 9 years ago
• Beercow / DFIR_Toolbar

  View on GitHub
  ☆28Oct 15, 2025Updated 5 months ago
• keithjjones / cuckoo-modified-api

  View on GitHub
  A Python library to interface with a cuckoo-modified instance
  ☆23Oct 31, 2016Updated 9 years ago
• forensicmatt / PyWindowsThingies

  View on GitHub
  Windows Thingies in Python for live use.
  ☆24Apr 22, 2019Updated 6 years ago
• DBHeise / CyberSaucier

  View on GitHub
  Putting the Sauce in CyberChef - making CyberChef automatable
  ☆19Feb 18, 2026Updated last month
• schrodyn / steezy

  View on GitHub
  Steezy - Ghetto Yara Generation
  ☆15Mar 27, 2023Updated 3 years ago
• Neo23x0 / xorex

  View on GitHub
  XOR Key Extractor
  ☆51Aug 10, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• coldfusion39 / excel-press

  View on GitHub
  Python script to compress VBA macro files
  ☆24Feb 2, 2023Updated 3 years ago
• devgc / GcLinkParser

  View on GitHub
  A GC link parser for both linkfiles and jumplists.
  ☆18Oct 28, 2016Updated 9 years ago
• joxeankoret / maltindex

  View on GitHub
  Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns
  ☆67Jun 26, 2017Updated 8 years ago
• SneakyNachos / MalwareAnalysisTraining

  View on GitHub
  Work in Progress repo
  ☆16Apr 18, 2019Updated 6 years ago
• yolothreat / utilitybelt

  View on GitHub
  A Python library for being a CND Batman....
  ☆35Oct 29, 2015Updated 10 years ago
• Invoke-IR / PowerForensicsPortable

  View on GitHub
  ☆33Nov 21, 2024Updated last year
• glimps-re / PowersheLLM

  View on GitHub
  The official repository of PowersheLLM, a model for Powershell maliciousness detection using fine-tuned LLM
  ☆14Jun 6, 2024Updated last year
• h3x2b / yara-rules

  View on GitHub
  Yara rules for detecting malware
  ☆23Sep 9, 2025Updated 6 months ago
• rembish / cfb

  View on GitHub
  Microsoft Compound File Binary (CFB) file format Python IO
  ☆15Mar 8, 2026Updated 2 weeks ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• bitbug0x55AA / Blue_Team_Hunting_Field_Notes

  View on GitHub
  My external brain for cyber defense (WIP). A practical collection of field notes on hunting strategies and system principles. Documentin…
  ☆77Updated this week
• grayfold3d / POSH-Triage

  View on GitHub
  Tools for parsing Forensic images
  ☆41Dec 14, 2018Updated 7 years ago
• libyal / reviveit

  View on GitHub
  ReviveIT (revit) is a proof of concept file recovery tool (carver)
  ☆13Dec 3, 2020Updated 5 years ago
• KarmaPenny / pdfparser

  View on GitHub
  PDF Parser is a command line tool and go library for analyzing PDF files.
  ☆14Jan 25, 2024Updated 2 years ago
• AlmCo / Panorama

  View on GitHub
  Fast incident overview
  ☆41Feb 11, 2017Updated 9 years ago
• StamusNetworks / surimisp

  View on GitHub
  Check IOC provided by a MISP instance on Suricata events
  ☆18Jun 4, 2019Updated 6 years ago
• opensourcesec / CIRTKit

  View on GitHub
  Tools for the Computer Incident Response Team
  ☆150Apr 17, 2017Updated 8 years ago