sbousseaden / YaraHunts
Random hunting ordiented yara rules
☆95Updated last year
Alternatives and similar repositories for YaraHunts:
Users that are interested in YaraHunts are comparing it to the libraries listed below
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- Various capabilities for static malware analysis.☆77Updated 6 months ago
- YARA rule analyzer to improve rule quality and performance☆97Updated 2 months ago
- A YARA Rule Performance Measurement Tool☆58Updated last year
- Collection of YARA signatures from individual research☆43Updated last year
- Simple yara rule manager☆66Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆99Updated 2 weeks ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated 11 months ago
- A repository that maps API calls to Sysmon Event ID's.☆118Updated 2 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 6 months ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated 8 months ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆61Updated last year
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated last month
- Repository with selected IOCs and YARA rules for threat hunting.☆35Updated 2 months ago
- Hunt malware with Volatility☆47Updated 10 months ago
- Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.☆64Updated 2 years ago
- XOR Key Extractor☆50Updated 7 months ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆72Updated 3 months ago
- A list of Mitre Caldera compatible emulation-plans☆14Updated 4 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆63Updated 2 years ago
- A rewrite of mactime, a bodyfile reader☆37Updated 7 months ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆80Updated 3 years ago