562 Open source projects that are alternatives of or similar to Awesome Yara

Sandboxed Execution Environment

Community modules for FAME

OWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.

Write-ups for FireEye's FLARE-On challenges

A modular Python application to pull intelligence about malicious files

A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.

A repository of my completed writeups, along with the samples themselves.

Malware repository component for samples & static configuration with REST API interface.

Collection of scripts for different malware analysis tasks

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Leverage Sophos Central API

An ICAP Server with yara scanner for URL and content.

An open source script to perform malware static analysis on Portable Executable

Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)

Don't Just Search OSINT. Sweep It.

Collecting IOCs posted on Twitter

Malware Analysis Zoo

Yara rules written by me, for free use.

BONOMEN - Hunt for Malware Critical Process Impersonation

A curated list of awesome resources related to executable packing

ReversingLabs YARA Rules

Malware samples for analysis, researchers, anti-virus and system protection testing.(1300+ Malware-samples!)

FAME Automates Malware Evaluation

BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)

A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

Binary instrumentation framework based on FRIDA

A list of awesome malware detection tools

Code written as part of our various malware investigations

This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant yara rules and ids signatures to detect these indicators.

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

One of the few malware collection

The repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"

Lookup file hashes, domain names and IP addresses using various vendors to assist with triaging potential threats.

Malware Machine Learning

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules

Java-layer Android Malware Simplifier

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

CLI tool to analyze PE files

Drltrace is a library calls tracer for Windows and Linux applications.

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

The PE file analysis toolkit

WinDBG Anti-RootKit Extension

WinAppDbg Debugger

Android virtual machine and deobfuscator

16,432 Free Yara rules created by

Detection in the form of Yara, Snort and ClamAV signatures.

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Android Reverse-Engineering Workbench for VS Code

Collection of malware source code for a variety of platforms in an array of different programming languages.

Maltego CaseFile entities for information security investigations, malware analysis and incident response

Norimaci is a simple and lightweight malware analysis sandbox for macOS

Volatility Framework plugin to detect various types of hooks as performed by banking Trojans

A Machine Learning approach for classifying a file as Malicious or Legitimate

Towards Building an Intelligent Anti-Malware System: A Deep Learning Approach using Support Vector Machine for Malware Classification

Explore Indicators of Compromise Automatically

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.