YextendYara integrated software to handle archive file data.
Stars: ✭ 207 (-91.65%)
Yara RulesA collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
Stars: ✭ 206 (-91.69%)
Go YaraGo bindings for YARA
Stars: ✭ 198 (-92.01%)
DailyiocIOC from articles, tweets for archives
Stars: ✭ 167 (-93.26%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (-10.57%)
YaraguardianDjango web interface for managing Yara rules
Stars: ✭ 156 (-93.71%)
ThreathuntingTools for hunting for threats.
Stars: ✭ 153 (-93.83%)
IocsSophos-originated indicators-of-compromise from published reports
Stars: ✭ 128 (-94.84%)
Walkoff AppsWALKOFF-enabled applications. #nsacyber
Stars: ✭ 125 (-94.96%)
PlyaraParse YARA rules and operate over them more easily.
Stars: ✭ 108 (-95.64%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (-95.64%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (-43.77%)
Signature BaseSignature base for my scanner tools
Stars: ✭ 1,212 (-51.11%)
Lw YaraYara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Stars: ✭ 78 (-96.85%)
Yara EndpointYara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
Stars: ✭ 75 (-96.97%)
MascA Web Malware Scanner
Stars: ✭ 74 (-97.01%)
UrsadbTrigram database written in C++, suited for malware indexing
Stars: ✭ 72 (-97.1%)
BalbuzardBalbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain names, known file headers, interesting strings, etc). It can also crack malware obfuscation such as XOR, ROL, etc by bruteforcing and checking for those patterns.
Stars: ✭ 70 (-97.18%)
BinaryalertBinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
Stars: ✭ 1,125 (-54.62%)
YarasigsVarious Yara signatures (possibly to be included in a release later).
Stars: ✭ 59 (-97.62%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-98.14%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (-59.7%)
RpotReal-time Packet Observation Tool
Stars: ✭ 38 (-98.47%)
BinjadockAn extendable, tabbed, dockable UI widget plugin for BinaryNinja https://binary.ninja.
Stars: ✭ 34 (-98.63%)
Malware IocIndicators of Compromises (IOC) of our various investigations
Stars: ✭ 955 (-61.48%)
Operation WocaoOperation Wocao - Indicators of Compromise
Stars: ✭ 29 (-98.83%)
IocsIoC's, PCRE's, YARA's etc
Stars: ✭ 15 (-99.39%)
DidierstevenssuitePlease no pull requests for this repository. Thanks!
Stars: ✭ 856 (-65.47%)
Holmes TotemInvestigation Planner for fast running analysis with predictable execution time. For example, static analysis.
Stars: ✭ 25 (-98.99%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (-67.93%)
Ghidra scriptsScripts for the Ghidra software reverse engineering suite.
Stars: ✭ 732 (-70.47%)
ManalyzeA static analyzer for PE executables.
Stars: ✭ 701 (-71.72%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (-80.07%)
YaraThe pattern matching swiss knife
Stars: ✭ 5,209 (+110.13%)
PeframePEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
Stars: ✭ 472 (-80.96%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (-82.29%)
StrelkaReal-time, container-based file scanning at enterprise scale
Stars: ✭ 387 (-84.39%)
Yara PythonThe Python interface for YARA
Stars: ✭ 368 (-85.16%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (-85.8%)
Icewater16,432 Free Yara rules created by
Stars: ✭ 324 (-86.93%)
HamburglarHamburglar -- collect useful information from urls, directories, and files
Stars: ✭ 321 (-87.05%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (-87.9%)
Yara RulesRepository of YARA rules made by McAfee ATR Team
Stars: ✭ 283 (-88.58%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (-88.5%)
MqueryYARA malware query accelerator (web frontend)
Stars: ✭ 264 (-89.35%)
Pepper An open source script to perform malware static analysis on Portable Executable
Stars: ✭ 250 (-89.92%)
RulesRepository of yara rules
Stars: ✭ 2,842 (+14.64%)
FsfFile Scanning Framework
Stars: ✭ 228 (-90.8%)