An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
☆21Nov 13, 2022Updated 3 years ago
Alternatives and similar repositories for RonnieColemanYARAParser
Users that are interested in RonnieColemanYARAParser are comparing it to the libraries listed below
Sorting:
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Jan 18, 2023Updated 3 years ago
- Scripts and lists to help generate YARA friendly string mutations☆22Apr 9, 2023Updated 2 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Sep 26, 2017Updated 8 years ago
- YARA Language Server☆74Feb 3, 2026Updated last month
- ☆24Sep 28, 2022Updated 3 years ago
- A simple utility for stripping out either the SHA-1, MD5 or CRC values alone from the NSRL hash database☆14Nov 19, 2021Updated 4 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆14Aug 15, 2022Updated 3 years ago
- ☆13Nov 10, 2020Updated 5 years ago
- Learn how to get more out of publicly available threat reports to help improve the security posture of your organization! TLP: White Thre…☆15Jun 5, 2023Updated 2 years ago
- Steezy - Ghetto Yara Generation☆15Mar 27, 2023Updated 2 years ago
- Plugins for the Viper Framework��☆14Sep 21, 2019Updated 6 years ago
- Automatic YARA rule generation for Malpedia☆168Sep 8, 2022Updated 3 years ago
- VirusTotal Intelligence Search☆40May 21, 2020Updated 5 years ago
- Miscellaneous Scripts☆17Sep 11, 2020Updated 5 years ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated last year
- Random notes collected on the intertubes relating to DFIR☆35Jun 26, 2023Updated 2 years ago
- ☆15Nov 25, 2021Updated 4 years ago
- Generate Indexes from SANS PDFs☆18Jun 3, 2024Updated last year
- ☆23Aug 1, 2020Updated 5 years ago
- ☆21May 8, 2022Updated 3 years ago
- Threat Box Assessment Tool☆19Aug 15, 2021Updated 4 years ago
- Converting data from services like Censys and Shodan to a common data model☆52Feb 22, 2026Updated 2 weeks ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆50May 16, 2022Updated 3 years ago
- ☆25Jul 23, 2024Updated last year
- A series of Bro Scripts created for detection purposes.☆19Nov 18, 2016Updated 9 years ago
- ☆23Jun 1, 2022Updated 3 years ago
- CLI tool to compute the TypeRefHash for .NET binaries.☆19Nov 10, 2021Updated 4 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Jan 6, 2022Updated 4 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Detection Engineering with YARA☆87Jan 6, 2024Updated 2 years ago
- A hex viewer for the sleuths!☆20Nov 7, 2025Updated 4 months ago
- A Python package and command line utility for scanning emails with YARA rules☆21Jan 23, 2026Updated last month
- ☆18Apr 16, 2015Updated 10 years ago
- This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…☆54Oct 15, 2019Updated 6 years ago
- ☆29Jan 9, 2025Updated last year
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Telsy CTI Research Team☆57Dec 15, 2020Updated 5 years ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago