GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ditekshen → detection

ditekshen / detection

Licence: other
Detection in the form of Yara, Snort and ClamAV signatures.

Programming Languages

YARA
70 projects
python
139335 projects - #7 most used programming language

Labels

rulesiocdetectionclamavsignaturesyarasnort

Projects that are alternatives of or similar to detection

yara-parser
Tools for parsing rulesets using the exact grammar as YARA. Written in Go.
Stars: ✭ 69 (-1.43%)
Mutual labels:  detection, signatures, yara
Threatingestor
Extract and aggregate threat intelligence.
Stars: ✭ 439 (+527.14%)
Mutual labels:  ioc, yara
Python Iocextract
Defanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (+328.57%)
Mutual labels:  ioc, yara
Awesome Yara
A curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+1891.43%)
Mutual labels:  ioc, yara
static file analysis
Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (-51.43%)
Mutual labels:  clamav, yara
Strelka
Real-time, container-based file scanning at enterprise scale
Stars: ✭ 387 (+452.86%)
Mutual labels:  detection, yara
Signature Base
Signature base for my scanner tools
Stars: ✭ 1,212 (+1631.43%)
Mutual labels:  ioc, yara
apooxml
Generate YARA rules for OOXML documents.
Stars: ✭ 34 (-51.43%)
Mutual labels:  detection, yara
Loki
Loki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+3067.14%)
Mutual labels:  ioc, yara
Malware Indicators
Citizen Lab Malware Reports
Stars: ✭ 196 (+180%)
Mutual labels:  ioc, yara
SIGMA-Resources
Resources To Learn And Understand SIGMA Rules
Stars: ✭ 61 (-12.86%)
Mutual labels:  rules, detection
Malware Ioc
Indicators of Compromises (IOC) of our various investigations
Stars: ✭ 955 (+1264.29%)
Mutual labels:  ioc, yara
Analyzer
🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (+54.29%)
Mutual labels:  ioc, yara
Yaraguardian
Django web interface for managing Yara rules
Stars: ✭ 156 (+122.86%)
Mutual labels:  rules, yara
S1EM
This project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+285.71%)
Mutual labels:  clamav, yara
ZeroIoC
ZeroIoC is reflectionless IoC Container for .NET
Stars: ✭ 22 (-68.57%)
Mutual labels:  ioc
network-tools
Network Tools
Stars: ✭ 27 (-61.43%)
Mutual labels:  snort
di
🛠 A full-featured dependency injection container for go programming language.
Stars: ✭ 156 (+122.86%)
Mutual labels:  ioc
inject
[Archived] See https://github.com/goava/di.
Stars: ✭ 49 (-30%)
Mutual labels:  ioc
CNeptune
CNeptune improve productivity & efficiency by urbanize .net module with meta-code to lay foundation for frameworks
Stars: ✭ 30 (-57.14%)
Mutual labels:  ioc
View All Similar Projects ➔

Detection and Hunting Signatures

A set of interrelated network and host detection rules with the aim of improving detection and hunting visibility and context. Where applicable, each Snort rule includes metadata indicating the corresponding Yara and ClamAV rules, and each Yara signature also includes metadata to the corresponding Snort and ClamAV rules, and so on.

Supported Rules

Currently, Snort, Yara and ClamAV rules are supported. Additional singatures and formats are work in progress.

Scripts

Currently, only scripts available are used to aid in auto-generation of hash-based and certificate-based Yara rules.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].