sophos / yaraml_rulesLinks
Security ML models encoded as Yara rules
☆212Updated 2 years ago
Alternatives and similar repositories for yaraml_rules
Users that are interested in yaraml_rules are comparing it to the libraries listed below
Sorting:
- Automatic YARA rule generation for Malpedia☆161Updated 3 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 4 months ago
- ☆156Updated 2 years ago
- Parse YARA rules and operate over them more easily.☆192Updated 7 months ago
- c2 traffic☆190Updated 2 years ago
- Community modules for CAPE Sandbox☆103Updated this week
- A guide on how to write fast and memory friendly YARA rules☆153Updated 7 months ago
- IOC from articles, tweets for archives☆317Updated last year
- ☆128Updated 8 months ago
- Automated Yara Rule generation using Biclustering☆71Updated 4 years ago
- Research indicators and detection rules☆66Updated 2 years ago
- Automatically create YARA rules from malicious documents.☆212Updated 3 years ago
- YARA malware query accelerator (web frontend)☆434Updated last week
- Python scripts for Malware Bazaar☆154Updated last year
- ☆165Updated 4 years ago
- ☆60Updated 4 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆140Updated 4 years ago
- Sigma rules from Joe Security☆221Updated 11 months ago
- Signature engine for all your logs☆171Updated last year
- Collection of rules created using YARA-Signator over Malpedia☆135Updated 10 months ago
- YARA Rules I come across on the internet☆351Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆385Updated 3 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- ☆97Updated 4 years ago
- Set of Yara rules for finding files using magics headers☆140Updated 5 years ago
- Malware repository component for samples & static configuration with REST API interface.☆366Updated last week
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆333Updated 7 months ago
- simple YARA-based IOC scanner☆169Updated last month
- YARA rule analyzer to improve rule quality and performance☆103Updated 5 months ago
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 3 years ago