sbousseaden / YaraHunts
Random hunting ordiented yara rules
☆95Updated last year
Alternatives and similar repositories for YaraHunts:
Users that are interested in YaraHunts are comparing it to the libraries listed below
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- Various capabilities for static malware analysis.☆77Updated 6 months ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- YARA rule analyzer to improve rule quality and performance☆97Updated 2 months ago
- A YARA Rule Performance Measurement Tool☆58Updated last year
- Simple yara rule manager☆66Updated 2 years ago
- Collection of YARA signatures from individual research☆43Updated last year
- A repository that maps API calls to Sysmon Event ID's.☆117Updated 2 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆72Updated 2 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated last year
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 6 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆61Updated 2 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆100Updated 2 weeks ago
- A VBA parser and emulation engine to analyze malicious macros.☆95Updated 2 weeks ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Generate YARA rules for OOXML documents.☆38Updated last year
- Extract common Windows artifacts from source images and VSCs☆65Updated 3 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆111Updated last year
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.☆64Updated 2 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆85Updated 2 years ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆46Updated 2 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- This repository contains files from AppGate / Immunity Malware Analysis Team.☆21Updated 3 years ago
- Standardized Malware Analysis Tool☆52Updated 4 years ago