sbousseaden / YaraHuntsLinks
Random hunting ordiented yara rules
☆97Updated 2 years ago
Alternatives and similar repositories for YaraHunts
Users that are interested in YaraHunts are comparing it to the libraries listed below
Sorting:
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- Collection of YARA signatures from individual research☆44Updated last year
- Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.☆65Updated 2 years ago
- Cloud Templates and scripts to deploy mordor environments☆129Updated 4 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- Various capabilities for static malware analysis.☆78Updated 9 months ago
- Simple yara rule manager☆66Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 9 months ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 4 months ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.☆56Updated 3 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆73Updated last year
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- Sigma Detection Rule Repository☆88Updated 5 years ago
- Compilation of resources to help with Adversary Simulation automation harness☆100Updated 4 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated last week
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆74Updated 3 weeks ago
- ☆35Updated 8 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last week
- Hunt malware with Volatility☆47Updated last year
- Yara Based Detection Engine for web browsers☆48Updated 3 years ago