94 Open source projects that are alternatives of or similar to Balbuzard

YARA package for Sublime Text

Rust bindings for VirusTotal/Yara

Real-time, container-based file scanning at enterprise scale

YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.

r2yara - Module for Yara using radare2 information

Modular file scanning/analysis framework

Repository of Yara rules dedicated to Phishing Kits Zip files

Please no pull requests for this repository. Thanks!

Validates yara rules and tries to repair the broken ones.

Hamburglar -- collect useful information from urls, directories, and files

Yara Based Detection Engine for web browsers

A Binary Genetic Traits Lexer Framework

DIE engine

Yara rules written by me, for free use.

Operation Wocao - Indicators of Compromise

Simple yara rule manager

PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.

An ICAP Server with yara scanner for URL and content.

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Exploits for YARA 3.7.1 & 3.8.1

An open source framework for enterprise level automated analysis.

Detection in the form of Yara, Snort and ClamAV signatures.

yarGen is a generator for YARA rules

Set of Yara rules for finding files using magics headers

Repository of YARA rules made by McAfee ATR Team

YARA malware query accelerator (web frontend)

Hex patterns, include patterns and magic files for the use with the ImHex Hex Editor

Guidance for mitigation web shells. #nsacyber

🐺 Malware analysis platform

Indicators of Compromises (IOC) of our various investigations

A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.

Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules

CLI tool to analyze PE files

Generate YARA rules for OOXML documents.

The pattern matching swiss knife

Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)

IoC's, PCRE's, YARA's etc

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

Extract and aggregate threat intelligence.

Funnel is a lightweight yara-based feed scraper

Yara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)

The Python interface for YARA

Yara scan Phishing Kit's Zip archive(s)

Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.

C# wrapper around the Yara pattern matching library

16,432 Free Yara rules created by

Yara powered NIDS with high speed packet capture powered by PF_RING

Real-time Packet Observation Tool

Malice Yara Plugin

Defanged Indicator of Compromise (IOC) Extractor.

Tools for parsing rulesets using the exact grammar as YARA. Written in Go.

Scripts for the Ghidra software reverse engineering suite.

🐺 Malware analysis platform

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Various Yara signatures (possibly to be included in a release later).

An extendable, tabbed, dockable UI widget plugin for BinaryNinja https://binary.ninja.

A static analyzer for PE executables.

ReversingLabs YARA Rules