yara
There are 321 repositories under yara topic.
VirusTotal/yara
The pattern matching swiss knife
InQuest/awesome-yara
A curated list of awesome YARA rules, tools, and people.
Neo23x0/Loki
Loki - Simple IOC and YARA Scanner
Neo23x0/signature-base
YARA signature and IOC database for my scanners and tools
horsicq/DIE-engine
DIE engine
rednaga/APKiD
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
eset/malware-ioc
Indicators of Compromises (IOC) of our various investigations
Neo23x0/yarGen
yarGen is a generator for YARA rules
jvoisin/php-malware-finder
Detect potentially malicious PHP files
airbnb/binaryalert
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
deepfence/YaraHunter
🔍🔍 Malware scanner for cloud-native, as part of CI/CD and at Runtime 🔍🔍
curated-intel/Ukraine-Cyber-Operations
Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.
target/strelka
Real-time, container-based file scanning at enterprise scale
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
reversinglabs/reversinglabs-yara-rules
ReversingLabs YARA Rules
WerWolv/ImHex-Patterns
Hex patterns, include patterns and magic files for the use with the ImHex Hex Editor
VirusTotal/yara-python
The Python interface for YARA
mitre/multiscanner
Modular file scanning/analysis framework
advanced-threat-research/Yara-Rules
Repository of YARA rules made by Trellix ATR Team
wgpsec/whohk
whohk,linux下一款强大的应急响应工具 在linux下的应急响应往往需要通过繁琐的命令行来查看各个点的情况,有的时候还需要做一些格式处理,这对于linux下命令不是很熟悉的人比较不友好。本工具将linux下应急响应中常用的一些操作给集合了起来,并处理成了较为友好的格式,只需要通过一个参数就能代替繁琐复杂的命令来实现对各个点的检查。
InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
c3rb3ru5d3d53c/binlex
A Binary Genetic Traits Lexer Framework
cristianzsh/freki
:wolf: Malware analysis platform
CERT-Polska/mquery
YARA malware query accelerator (web frontend)
V1D1AN/S1EM
This project is a SIEM with SIRP and Threat Intel, all in one.
PUNCH-Cyber/stoq
An open source framework for enterprise level automated analysis.
SupportIntelligence/Icewater
16,432 Free Yara rules created by
InQuest/yara-rules
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
hillu/go-yara
Go bindings for YARA
volexity/threat-intel
Signatures and IoCs from public Volexity blog posts.
EgeBalci/deoptimizer
Evasion by machine code de-optimization.
bartblaze/Yara-rules
Collection of private Yara rules.
BayshoreNetworks/yextend
Yara integrated software to handle archive file data.
roadwy/DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
EmersonElectricCo/fsf
File Scanning Framework
hyuunnn/Hyara
Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)