schrodyn / steezy
Steezy - Ghetto Yara Generation
☆15Updated last year
Related projects ⓘ
Alternatives and complementary repositories for steezy
- Plugins for the Viper Framework☆14Updated 5 years ago
- TA505 unpacker Python 2.7☆46Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 9 months ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated last year
- Generate YARA rules for OOXML documents.☆37Updated last year
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆25Updated 3 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- A collection of my public YARA signatures for various malware families☆29Updated last month
- Yara rules☆19Updated last year
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Python emulator for Excel XLM macros.☆18Updated 4 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- ☆15Updated 2 years ago
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆28Updated 6 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Updated 7 months ago
- Low budget VirusTotal Intelligence Cosplay☆20Updated 2 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated 9 months ago
- Python 3 library to build YARA rules.☆13Updated 3 years ago
- A Maltego transform for VirusTotal vHash☆31Updated 5 years ago
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago