spyre-project / spyreLinks
simple YARA-based IOC scanner
☆169Updated last week
Alternatives and similar repositories for spyre
Users that are interested in spyre are comparing it to the libraries listed below
Sorting:
- Signature engine for all your logs☆171Updated last year
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆157Updated 4 months ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 3 months ago
- IOC from articles, tweets for archives☆315Updated last year
- Golang Parser for Microsoft Event Logs☆104Updated last month
- ☆165Updated 4 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Live forensic artifacts collector☆170Updated last year
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- ☆175Updated last year
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆79Updated 2 months ago
- Cisco Orbital - Osquery queries by Talos☆134Updated last year
- Set of Yara rules for finding files using magics headers☆139Updated 4 years ago
- c2 traffic☆189Updated 2 years ago
- ☆129Updated 6 months ago
- Cross-platform Yara scanner written in Go☆329Updated 2 years ago
- A Go implementation of JARM☆119Updated 3 years ago
- Sigma rules from Joe Security☆219Updated 9 months ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆76Updated last month
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- ☆50Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆381Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last week
- Threat Hunting tool about Sysmon and graphs☆334Updated 2 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆262Updated 6 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Collecting & Hunting for IOCs with gusto and style☆241Updated 4 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago