Pinned Repositories
100daysofYARA2024
Rules shared by the community from 100 Days of YARA 2024
Absolutely-Positively-NOT-Hacking-Back-with-Pcap
Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control Nodes
Cerebro
Scripts and lists to help generate YARA friendly string mutations
ConventionEngine
ConventionEngine - A Yara Rulepack for PDB Path Hunting
Reversing-the-Reversing-of-the-TriStation-Protocol
"Reversing the Reversing of the TriStation Protocol" presented at SEC-T 0x0B in 2018
RonnieColemanYARAParser
An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
threat-research
Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
TriStation-Wireshark-Dissector
Basic Wireshark LUA dissector for TriStation Protocol
stvemillertime's Repositories
stvemillertime/GCTI
stvemillertime/floss2yar
stvemillertime/RonnieColemanYARAParser
An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
stvemillertime/steezy
Steezy - Ghetto Yara Generation
stvemillertime/vivisect
stvemillertime/vxsig
Automatically generate AV byte signatures from sets of similar binaries.
stvemillertime/hashdb
Assortment of hashing algorithms used in malware
stvemillertime/YaraMemoryScanner
Simple PowerShell script to enable process scanning with Yara.
stvemillertime/yaraml_rules
Security ML models encoded as Yara rules
stvemillertime/yara-rules
stvemillertime/yarGen
yarGen is a generator for YARA rules
stvemillertime/PracticalMalwareAnalysis-Labs
Binaries for the book Practical Malware Analysis
stvemillertime/PhishingKit-Yara-Rules
Repository of Yara rules dedicated to Phishing Kits Zip files
stvemillertime/rules
Repository of yara rules
stvemillertime/BruteBaby
stvemillertime/StrikeSuit-Gift
StrikeSuit Gift and the origin story of APT32 macros
stvemillertime/100DaysofYARA-1
100 Days of YARA to be updated with rules & ideas as the year progresses
stvemillertime/threat-research
Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
stvemillertime/NetskopeThreatLabsIOCs
stvemillertime/synapse-triage
Synapse Rapid Power-Up for Hatching Triage
stvemillertime/APT
stvemillertime/yara_scanner
A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional capabilities.
stvemillertime/investigations
Indicators from Amnesty International's investigations
stvemillertime/Fnord
Pattern Extractor for Obfuscated Code
stvemillertime/refinery
High Octane Triage Analysis
stvemillertime/100daysofyara
stvemillertime/jpcert-yara
JPCERT/CC public YARA rules repository
stvemillertime/factual-rules-generator
Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
stvemillertime/memberref2yara
Dump .NET MemberRef Table as a Yara Rule
stvemillertime/yara_rules