360 Open source projects that are alternatives of or similar to Lw Yara

JWT Framework

Various Yara signatures (possibly to be included in a release later).

获取Android应用基本信息的工具集

A react-native component for signing.

A collection of sources of indicators of compromise.

Bringing you the best of the worst files on the Internet.

Modular file scanning/analysis framework

Operation Wocao - Indicators of Compromise

Collection of malware source code for a variety of platforms in an array of different programming languages.

Drebin - NDSS 2014 Re-implementation

Android Reverse-Engineering Workbench for VS Code

Secure Multiparty Key Generation, Signature and Decryption javacard applet

Cryptographic javascript-functions for ethereum and tutorials to use them with web3js and solidity

IoC's, PCRE's, YARA's etc

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Your Everyday Threat Intelligence

Real-time, container-based file scanning at enterprise scale

up to date csgo offsets and hazedumper config

Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.

Event Trace Log file parser in pure Python

Extension that allows you to sign transactions with your private keys securely from within the browser without ever exposing them.

Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.

A tool for forensic file system reconstruction.

An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.

Rust implementation of {t,n}-threshold ECDSA (elliptic curve digital signature algorithm).

微信JSSDK服务端生成签名认证，包含后端PHP与前端JS的实现，PHP后端有缓存access_token、jsapi_ticket。

Scripts for the Ghidra software reverse engineering suite.

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Hamburglar -- collect useful information from urls, directories, and files

311 byte EIP712 Signing Compliant Delegate-Call Enabled MultiSignature Wallet for the Ethereum Virtual Machine

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Smart OSINT collection of common IOC types

Malcom - Malware Communications Analyzer

Educational, CTF-styled labs for individuals interested in Memory Forensics

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

Binary instrumentation framework based on FRIDA

A community driven collection of IDA FLIRT signature files

🐺 Malware analysis platform

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

Capture signature view in Swift and export it as a vector graphics or bitmap

Real-time Packet Observation Tool

DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.

A static analyzer for PE executables.

YARA malware query accelerator (web frontend)

Port of TweetNaCl cryptographic library to JavaScript

Digital Forensics Investigation Platform

Guidance for mitigation web shells. #nsacyber

An iOS PDF viewer and annotator written in Swift that can be embedded into any application.

Volatility Framework plugin to detect various types of hooks as performed by banking Trojans

Ultimate Javascript Object Signing and Encryption (JOSE) and JSON Web Token (JWT) Implementation for .NET and .NET Core

Documentation and Sharing Repository for ThreatPinch Lookup Chrome & Firefox Extension

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.

🐺 Malware analysis platform

OWASP Seraphimdroid is an open source project with aim to create, as a community, an open platform for education and protection of Android users against privacy and security threats.

A Machine Learning approach for classifying a file as Malicious or Legitimate

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

YaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.