Alternatives and similar repositories for YaraTools:

Users that are interested in YaraTools are comparing it to the libraries listed below

• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆27Updated last year
• matthw / malware_analysis
  ☆18Updated 10 months ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated last year
• elceef / yara-rulz
  Collection of generic YARA rules
  ☆15Updated 8 months ago
• marcosimioni / omigood
  OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…
  ☆18Updated 3 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated last year
• nccgroup / mimikatz-detector-busylight
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆20Updated 2 years ago
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆38Updated 2 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆16Updated 9 months ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated 7 months ago
• CatherineFramework / catherine
  The Catherine Framework is a general-purpose cybersecurity framework built to provide extended support for defense operations.
  ☆16Updated 10 months ago
• blackarrowsec / malware-research
  Malware campaigns and APTs research by BlackArrow
  ☆18Updated 4 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated last year
• mr-r3b00t / parse_win_log
  ☆14Updated 2 years ago
• ptracesecurity / advanced-software-exploitation
  Official repository for the Advanced Software Exploitation (ASE) course
  ☆20Updated 6 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆46Updated 2 years ago
• whichbuffer / Lockbit-Black-3.0
  ☆24Updated 2 years ago
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆26Updated last year
• ab2pentest / MacOSThreatTrack
  Bash tool used for proactive detection of malicious activity on macOS systems.
  ☆35Updated last year
• LOFL-Project / LOFLCAB
  ☆52Updated 2 months ago
• peasead / windows-sandbox-to-elastic
  Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
  ☆48Updated last year
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• lapolis / palinka_c2
  Just another useless C2 occupying space in some HDD somewhere.
  ☆20Updated last year
• AmirHoseinTangsiriNET / EventLogSilencer
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆14Updated last year
• chaitanyakrishna / IOCScraper
  IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.
  ☆34Updated 3 years ago
• 0x11DFE / file-unpumper
  Tool that can be used to trim useless things from a PE file such as the things a file pumper would add.
  ☆25Updated 7 months ago
• ZephrFish / AutoHoneyPoC
  AutoPoC Generator HoneyPoC
  ☆35Updated 7 months ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆29Updated 4 years ago