sophos / yaraml_rules

Related projects ⓘ

Alternatives and complementary repositories for yaraml_rules

• boozallen / MOTIF
  ☆143Updated 2 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆98Updated 2 months ago
• plyara / plyara
  Parse YARA rules and operate over them more easily.
  ☆173Updated 4 months ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated last year
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆310Updated 10 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆154Updated 2 years ago
• OTRF / detection-hackathon-apt29
  Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets
  ☆132Updated 4 years ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆124Updated last year
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆85Updated this week
• joesecurity / sigma-rules
  Sigma rules from Joe Security
  ☆203Updated this week
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆328Updated 2 weeks ago
• fhightower / ioc-finder
  Simple, effective, and modular package for parsing observables (indicators of compromise (IOCs), network data, and other, security relate…
  ☆158Updated 11 months ago
• endgameinc / eqllib
  ☆158Updated 3 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated 11 months ago
• mikesxrs / Open-Source-YARA-rules
  YARA Rules I come across on the internet
  ☆333Updated 6 months ago
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆60Updated 10 months ago
• 0xrawsec / gene
  Signature engine for all your logs
  ☆160Updated 11 months ago
• Insikt-Group / Research
  Research indicators and detection rules
  ☆66Updated last year
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆413Updated this week
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 months ago
• FutureComputing4AI / AutoYara
  Automated Yara Rule generation using Biclustering
  ☆59Updated 3 years ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆363Updated 2 years ago
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆146Updated 5 months ago
• mitre-attack / tram
  Threat Report ATT&CK™ Mapping (TRAM) is a tool to aid analyst in mapping finished reports to ATT&CK.
  ☆346Updated 3 years ago
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆344Updated 3 years ago
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆371Updated 2 weeks ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆208Updated 2 years ago
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆112Updated 11 months ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆79Updated 3 years ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆91Updated this week