360 Open source projects that are alternatives of or similar to Lw Yara

Signature base for my scanner tools

Loki - Simple IOC and Incident Response Scanner

Extract and aggregate threat intelligence.

A Web Malware Scanner

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.

Bash script to Check for malicious Cryptomining

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.

ReversingLabs YARA Rules

A simple many-rules to many-files YARA scanner for incident response or malware zoos.

Malice Yara Plugin

A curated list of awesome YARA rules, tools, and people.

Yara rules written by me, for free use.

Yara Based Detection Engine for web browsers

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

PS / Bash / Python / Other scripts For FUN!

Defanged Indicator of Compromise (IOC) Extractor.

Validates yara rules and tries to repair the broken ones.

An open source framework for enterprise level automated analysis.

DIE engine

Indicators of Compromises (IOC) of our various investigations

Automagically extract forensic timeline from volatile memory dump

Submits multiple domains to VirusTotal API

CIRCL system forensic tools or a jumble of tools to support forensic

Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain names, known file headers, interesting strings, etc). It can also crack malware obfuscation such as XOR, ROL, etc by bruteforcing and checking for those patterns.

Secure Multiparty Key Generation, Signature and Decryption javacard applet

📇 Digital Forensics Artifact Repository (forensicanalysis edition)

Various Yara signatures (possibly to be included in a release later).

A react-native component for signing.

Bringing you the best of the worst files on the Internet.

Operation Wocao - Indicators of Compromise

Drebin - NDSS 2014 Re-implementation

Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.

IoC's, PCRE's, YARA's etc

Your Everyday Threat Intelligence

HTML5 canvas based smooth signature drawing

up to date csgo offsets and hazedumper config

Event Trace Log file parser in pure Python

CLI tool to analyze PE files

Please no pull requests for this repository. Thanks!

Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.

An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.

Python API Client for Cortex

WFSignatureView, signature view in Swift and based on OpenGL

微信JSSDK服务端生成签名认证，包含后端PHP与前端JS的实现，PHP后端有缓存access_token、jsapi_ticket。

Opensource Visual Studio extension for compiler instrinsics in C/C++

🔄 Ransomware recovery app for Nextcloud

311 byte EIP712 Signing Compliant Delegate-Call Enabled MultiSignature Wallet for the Ethereum Virtual Machine

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

A community driven collection of IDA FLIRT signature files

BitSend Master (Live Version)

yarGen is a generator for YARA rules

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

Real-time Packet Observation Tool

Scripts for the Ghidra software reverse engineering suite.

A static analyzer for PE executables.

Port of TweetNaCl cryptographic library to JavaScript