#
yara
Here are 149 public repositories matching this topic...
A curated list of awesome YARA rules, tools, and people.
ioc
awesome
awesome-list
threat-hunting
malware-analysis
malware-research
yara
yara-rules
malware-detection
yara-manager
yara-signatures
malware-rules
yara-scanner
awesome-yara
-
Updated
Aug 11, 2020
Signature base for my scanner tools
-
Updated
Aug 27, 2020 - YARA
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
-
Updated
Aug 27, 2020 - Python
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
android
machine-learning
antivirus
malware-analysis
malware-research
yara
packers
malware-detection
rasp
yara-forensics
android-protect-apps
android-protection
appshielding
-
Updated
Aug 25, 2020 - YARA
yarGen is a generator for YARA rules
-
Updated
Jul 27, 2020 - Python
Modular file scanning/analysis framework
python
linux
metadata
malware
python-script
antivirus
malware-analyzer
malware-analysis
malware-research
scanning
cuckoo
analytic-machines
analysis-framework
mount-point
yara
-
Updated
Oct 8, 2019 - Python
DIE engine
entropy
reverse-engineering
signature
disassembler
elf
binary-analysis
program-analysis
yara
unpacker
-
Updated
Aug 29, 2020 - C++
Extract and aggregate threat intelligence.
ioc
osint
dfir
threat-hunting
malware-research
misp
threat-sharing
threatintel
yara
threat-analysis
fraud-detection
intelligence-gathering
security-tools
threat-intelligence
soar
indicators-of-compromise
threat-feeds
threat-intelligence-platform
-
Updated
Aug 18, 2020 - Python
An open source framework for enterprise level automated analysis.
framework
malware-analyzer
malware-analysis
malware-research
automation-framework
yara
security-automation
malware-detection
-
Updated
Jul 27, 2020 - Python
Defanged Indicator of Compromise (IOC) Extractor.
ioc
library
osint
base64
decoding
dfir
malware-research
threat-sharing
threatintel
yara
threat-intelligence
defang
indicators-of-compromise
ioc-extractor
-
Updated
Jul 9, 2020 - Python
msm-code
commented
May 28, 2020
Environment information
- Mquery version (from the /status page): 1.2.0
- Ursadb version (from the /status page): 1.3.2+1125ee5
- Installation method:
- Generic docker-compose
- Dev docker-compose
- Native (from source)
- Other (please explain) k8s
Reproduction Steps
Start database compacting.
Run a query in just a right moment (ideallly a long running
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
-
Updated
Jun 30, 2020 - Python
Django web interface for managing Yara rules
rules
database
manager
metrics
corpus
registration
yara
yara-rules
guest-registration
yara-manager
yara-metrics
-
Updated
Jul 28, 2018 - Python
ReversingLabs YARA Rules
reverse-engineering
yara
yara-rules
ransomware-prevention
malware-detection
ransomware-detection
indicators-of-compromise
yara-signatures
-
Updated
Aug 17, 2020 - YARA
Yara rule making tool (IDA Pro & Binary Ninja Plugin)
-
Updated
Oct 23, 2019 - Python
Parse YARA rules and operate over them more easily.
-
Updated
Aug 1, 2020 - Python
Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
-
Updated
Mar 13, 2018 - Go
msm-code
commented
Apr 11, 2020
DbChange class is clearly used in ways it was not designed for.
The class definition:
enum class DbChangeType {
Insert = 1,
Drop = 2,
Reload = 3,
ToggleTaint = 4,
NewIterator = 5,
UpdateIterator = 6
};
class DBChange {
public:
DbChangeType type;
std::string obj_name;
std::string parameter;
DBChange(const DbChangeType &typeSet of Yara rules for finding files using magics headers
-
Updated
Feb 24, 2020 - YARA
stoQ Public Plugins
security
python3
malware-analyzer
malware-analysis
malware-research
yara
security-automation
malware-detection
stoq-plugins
-
Updated
Jul 28, 2020 - Python
Improve this page
Add a description, image, and links to the yara topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the yara topic, visit your repo's landing page and select "manage topics."
Currently, we're not detecting a lot of @wireghoul's htaceess-based webshells. It would be nice to improve the situation :)