A collection of Yara rules we wish to share with the world. These rules should not be considered production appropriate. Rather, they are valuable for research and hunting purposes. The rules are listed here, alphabetically, along with references for further reading:
- Microsoft_Office_DDE_Command_Execution
- Blogs: Overview, Hunting, and Mitigation, Freddie Mac Targeted Lure, SEC OMB Masquerading Lure, Vortex Ransomware Targeting Poland.
- Follow highlights of the conversation on Twitter from this "moment" we maintain.