pracsec / YaraTools
Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.
☆24Updated 2 years ago
Alternatives and similar repositories for YaraTools:
Users that are interested in YaraTools are comparing it to the libraries listed below
- Searching .evtx logs for remote connections☆23Updated last year
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 2 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 3 years ago
- ☆14Updated 2 years ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated last year
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆16Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Hundred Days of Yara Challenge☆12Updated 2 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated last year
- ☆24Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- Bash tool used for proactive detection of malicious activity on macOS systems.☆35Updated last year
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆48Updated last year
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 4 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆51Updated last year
- A Python script that gathers all valid IP addresses from all text files from a directory, and checks them against Whois database, TOR rel…☆30Updated 2 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆49Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- A collection of my presentation materials.☆17Updated 11 months ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- ☆12Updated 4 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Central IoC scanner based on Loki☆20Updated 3 years ago
- Method of finding interesting domains using keywords + JARMs☆13Updated 2 years ago
- ☆22Updated last year
- Evtx Log (xml) Browser☆56Updated 2 years ago