yara-forensics

There are 4 repositories under yara-forensics topic.

• APKiD

  rednaga / APKiD

  Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

  androidantivirusmachine-learningmalware-detectionmalware-analysismalware-researchyarayara-forensicspackersandroid-protectionandroid-protect-appsraspappshieldingobfuscation
  Language:YARA 2336
• ThreatHunting-Keywords-yara-rules

  mthcht / ThreatHunting-Keywords-yara-rules

  yara detection rules for hunting with the threathunting-keywords project

  awesome-listblueteamdetection-engineeringdfirforensics-toolshacktoolshuntingincident-responseoffensive-securitythreat-huntingthreat-intelligenceyara-forensicsyara-rulesyara-scanneryara-signatures
  Language:YARA 151

• michelcrypt4d4mus / yaralyzer

  Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.

  malwaremalware-analysismalware-detectionreverse-engineeringvisualizationyarayara-forensicsyara-scannerblueteamdfirhacking-toolnetsecnetsec-toolsyara-formatyara-integratedyara-rules
  Language:Python 141

• Xumeiquer / yara-forensics

  Set of Yara rules for finding files using magics headers

  forensicsyarayara-rulesdump-filesmagic-headersyara-forensics
  Language:YARA 141

• stellarbear / YaraSharp

  C# wrapper around the Yara pattern matching library

  yarayara-scannerwrapper-apiwrapper-libraryyara-forensicswrapperlibyaraasync-scanningnetcsharp
  Language:C 42
• Yara-Repo

  Fadavvi / Yara-Repo

  A script to collect (the most famous) Yara rules from more than 150 free resources. Free alternative to: https://valhalla.nextron-systems.com/

  yarayara-rulesyara-signaturesyara-forensicsblueteamblueteamingthreat-huntingthreat-intelligencethreatintel
  Language:Shell 28

• YARA-Silly-Silly / yarasilly2

  Automatic generation of YARA rules from sample files.

  yarayara-rulesyara-forensicspython3jinja2hacktoberfest
  Language:Python 28

• rpgeeganage / audit-node-modules-with-yara

  Audit Node Module folder with YARA rules to identify possible malicious packages hiding in node_moudles

  malware-analysisstatic-analysisyara-rulesyara-scanneryara-forensicsnodejsnode-jsnode-modulenodesecuritynode-securitynode-security-program
  Language:YARA 20

• CIRCL / factual-rules

  Factual rules are YARA rules to find legitimate software on raw disk acquisition.

  dfirdfir-automationyara-rulesyara-forensicsyara-signatures
  Language:YARA 12

• byt3n33dl3 / OffensiveYARA

  YARA for offensive, YARA can do that!?

  yarayara-forensics
  Language:C 11

• paulveillard / cybersecurity-YARA

  An ongoing collection of awesome tools and frameworks, best security software practices, libraries, learning tutorials, frameworks, academic and practical resources about YARA in cybersecurity

  yarayara-scanneryara-signaturesyara-manageryara-forensics
  9

• albertzsigovits / malware-yara

  YARA rules for malware detection

  malwaremalware-analysismalware-detectionmalware-protectionmalware-researchmalware-scannermalwareanalysisyarayara-forensicsyara-rulesyara-rulesetyara-signaturesmalware-yara
  Language:YARA 7

• dyussekeyev / thamara

  THAMARA - Threat Hunting with AMSI and YARA

  amsicybercyber-securitycyberseccybersecurityinformation-securityinformationsecurityinfosecinfosectoolsmalwaremalware-detectionmalware-protectionthreat-detectionthreat-huntingthreathuntingyarayara-forensicsyara-scanner
  Language:C 6

• jaegeral / yara-forensics-rules

  A collection of yara rules that can be used for forensics (non malware) cases but also some other rules

  yarayara-rulesyara-forensics
  Language:YARA 5

• kittymagician / Aegis

  Aegis - Flask web interface for scanning files with YARA

  python3flask-applicationyarayara-forensicsyara-scanner
  Language:HTML 4

• hbourget / YAREX

  🦠 YARA scans, easy & optimized. Full pipeline from fetching latest rules to extracting flagged artifacts for deeper analysis. Windows & GNU/Linux.

  bashlinuxmacosmalware-analysismalware-detectionoptimizationperformancepowershellwindowsyarayara-forensicsyara-rulesyara-scannerforensics
  Language:PowerShell 2

• jtpox / Yara-X-Sharp

  A simple wrapper using interop for Yara-X pattern matching on .NET.

  csharpnetwrapperwrapper-apiwrapper-libraryyarayara-forensicsyara-scanneryara-xyara-x-capiyara-x-scanner
  Language:C# 2

• threatcode / YARA

  The pattern matching swiss knife

  yarayara-forensicsyara-formatyara-rulesyara-scanner
  Language:C 1

• 0x4F776C / Yara

  やらないか?

  yara-rulesyara-forensicsanalysis
  Language:Python

• D3vKn1ght / yara-dll

  Dll for yara

  yarayara-forensics
  Language:C

• f3nr1rs3c / YARA

  basic yara commands

  malware-analysismalware-researchyarayara-forensicsyara-rules
  Language:YARA